O'Reilly logo

CCIE Practical Studies: Security (CCIE Self-Study) by Raymond Morrow, Andrew G. Mason, Dmitry Bokotey

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Port ACLs

The 3550 switch also supports an ACL that you can associate with a Layer 2 interface on your switch. These ACLs, referred to as port ACLs, are only supported on a physical interface and not on EtherChannel interfaces. You can apply port ACLs only on an interface in the inbound direction. You can define the following types of ACLs on a Layer 2 interface:

  • Standard IP ACLs

  • Extended IP ACLs

  • MAC extended ACLs

If you apply a port ACL to a trunk port, the ACL filters traffic on every VLAN that is present on that trunk port. If you apply a port ACL to a port with voice VLAN, the ACL filters traffic on both data and voice VLANs.

NOTE

When you configure a port ACL, you can filter IP traffic by using IP ACLs and non-IP traffic on the same Layer ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required