[c-nsp] ACL does not work??

Joe Zubkavich joe.zubkavich at starchoice.com
Fri Jul 14 15:42:37 EDT 2006


Actually, if you review the examples from the document you posted, say here:

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12225sed/scg/swacl.htm#wp1285654

you will note that the examples list the ACLs being applied to the physical interface only (in this case gi0/1), not to the Virtual Interface in the VLAN.

Joe

-----Original Message-----
From: Bruce Pinsky [mailto:bep at whack.org]
Sent: July 14, 2006 3:09 PM
To: Joe Zubkavich
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] ACL does not work??


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Joe Zubkavich wrote:
> Having the ACL on the switch at the VLAN level will only protect the
> switch.  An IP set at the VLAN level only is for accessing the switch,
> not as a transit point for traffic going from one port to another.
> 

Bzzzt....

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3560/12225sed/scg/swacl.htm#wp1549007

- --
=========
bep

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFEt+u1E1XcgMgrtyYRAk7aAKDu8183udKo0VjJLr6G6bSUlGvaBACgs9sl
mcmqFTqcwqfoZekwhgrXeb4=
=uwvj
-----END PGP SIGNATURE-----


More information about the cisco-nsp mailing list