No, that won't work. Traffic would need to be routed through the SVI in
order for that to have an affect.
If you want to simply apply an ACL to VLAN traffic, take a look at VACLS (
vlan access-lists).
-Yuri
On Thu, Mar 29, 2012 at 8:41 PM, Myung-Soo Ko <bacchus21_at_gmail.com> wrote:
> Hello, group
>
> I have an ACL related question. Even if no ip address is assigned in
> interface Vlan142, access-list 102 will work?
> I'm a bit confused.
>
> Thanks in advance,
> Regards,
>
> ------------------------------------------------------------------------------------------------------------------------------------------------------------------
> interface Vlan142
> no ip address
> ip access-group 102 in
> !
> access-list 102 permit ip any 172.XX.XX.0 0.0.1.255
> access-list 102 permit ip any 172.YY.YY.0 0.0.0.255
> access-list 102 deny ip any any
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Thu Mar 29 2012 - 20:51:04 ART
This archive was generated by hypermail 2.2.0 : Sun Apr 01 2012 - 07:56:52 ART