I agree with Yuri in that you are looking for vlan-filters, but that won't help you at layer 3.
Regards,
Jay McMickle- CCNP,CCSP,CCDP
Sent from iJay
On Mar 29, 2012, at 10:51 PM, Yuri Bank <yuribank_at_gmail.com> wrote:
> No, that won't work. Traffic would need to be routed through the SVI in
> order for that to have an affect.
>
> If you want to simply apply an ACL to VLAN traffic, take a look at VACLS (
> vlan access-lists).
>
> -Yuri
>
>
> On Thu, Mar 29, 2012 at 8:41 PM, Myung-Soo Ko <bacchus21_at_gmail.com> wrote:
>
>> Hello, group
>>
>> I have an ACL related question. Even if no ip address is assigned in
>> interface Vlan142, access-list 102 will work?
>> I'm a bit confused.
>>
>> Thanks in advance,
>> Regards,
>>
>> ------------------------------------------------------------------------------------------------------------------------------------------------------------------
>> interface Vlan142
>> no ip address
>> ip access-group 102 in
>> !
>> access-list 102 permit ip any 172.XX.XX.0 0.0.1.255
>> access-list 102 permit ip any 172.YY.YY.0 0.0.0.255
>> access-list 102 deny ip any any
>>
>>
>> Blogs and organic groups at http://www.ccie.net
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Fri Mar 30 2012 - 08:40:17 ART
This archive was generated by hypermail 2.2.0 : Sun Apr 01 2012 - 07:56:52 ART