A config example will help paint a clearer picture.<div><br></div><div>If you want an interface to be "route only", then put it in the default VLAN and add an IP to it:</div><div><br></div><div><div>SSH@core01#show run int e 6/2</div>
<div>interface ethernet 6/2</div><div> port-name ussvl</div><div> load-interval 30</div><div> ip address 172.30.253.249 255.255.255.252</div><div> ip ospf area 0.0.0.0</div><div> ip ospf priority 250</div><div> ipv6 address 2620:a4:1:fff0::1/64</div>
<div> ipv6 ospf area 0.0.0.5</div><div>!</div></div><div><br></div><div><br></div><div><br><div class="gmail_quote">On Thu, Mar 3, 2011 at 5:55 AM, <span dir="ltr"><<a href="mailto:lausgans@gmail.com">lausgans@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Hello.<br>
Every time i'm trying to disable "L2 Switching" or enable "Route Only"<br>
or global or per port basis, i'm getting these options disabled again<br>
after saving to flash and reloading of device (i'm running Base L3 layer<br>
firmware on FES2404).<br>
<br>
I'm interesting in these options because i want to apply extended ACL<br>
to one of ports on my device.<br>
<br>
I've also found that "ACL filtering based on VLAN membership or VE port<br>
membership (acl-per-port-per-VLAN)" feature is not supported. Does this<br>
mean that it's impossible to apply any ACL rule to the port that<br>
actually is a member of non-default VLAN group?<br>
_______________________________________________<br>
foundry-nsp mailing list<br>
<a href="mailto:foundry-nsp@puck.nether.net" target="_blank">foundry-nsp@puck.nether.net</a><br>
<a href="http://puck.nether.net/mailman/listinfo/foundry-nsp" target="_blank">http://puck.nether.net/mailman/listinfo/foundry-nsp</a><br>
</blockquote></div><br></div>