i would sugguest using something like 802.1q on the router.
this way you can trunk the VLANs back to the router where you can apply
ACL's on a per sub interface basis.
On Mon, 28 Aug
2000, Andrew wrote:
> Date: Mon, 28 Aug 2000 08:38:53 -0500
> From: Andrew <arousch@home.com>
> To: Xavier <xavier@bru-noc.net>, cisco-nsp@puck.nether.net
> Subject: Re: Switch 2924XL & access-list
> Resent-Date: Mon, 28 Aug 2000 09:47:15 -0400
> Resent-From: cisco-nsp@puck.nether.net
>
> Hellooooo..... it's a SWITCH not a ROUTER. Ask yourself at what LAYER an
> ACL works at and then ask yourself what LAYER the 2924XL works at.
>
> At 09:58 AM 8/28/00 +0200, Xavier wrote:
> >Hi,
> >
> >I would like to protect a network connected to a router via a 2924XL switch.
> >Problem: I would like to apply the access-list on the switch and not on
> >the router (to avoid a high load).
> >
> >I defined an access-list and applied to the default VLAN (1). It does not
> >work! Is there a problem? Can I apply acl in a VLAN?
> >
> >TIA!
> >
> >--
> >Visit: http://3276456082
> > "Contrary to popular belief, Unix is userfriendly.
> > It just happens to be selective about who it makes friends with."
>
--Marc Teichtahl Manager, Data Network Design Versatel Telecom "Whats the Inna - net ?" NASDAQ: VRSA AEX:VRSA
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:15 EDT