Community discussions

MUM Europe 2020
 
jeremyh
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 66
Joined: Tue Jul 10, 2012 1:21 pm

Wirespeed switch ACL in CRS317 help

Wed Aug 22, 2018 6:16 am

Hi there,

I would like to use switch ACLs on a CRS317 to:

1. permit PPPoE broadcast packets on a VLAN
2. permit PPPoE discovery packets on a VLAN
3. drop all other packets.

Will this configuration work?

/interface ethernet switch rule
add disabled=yes mac-protocol=pppoe-discovery ports=sfp-sfpplus1-pppoe \
    switch=switch1 vlan-id=1234
add disabled=yes mac-protocol=pppoe ports=sfp-sfpplus1-pppoe switch=\
    switch1 vlan-id=1234
add disabled=yes new-dst-ports="" ports=sfp-sfpplus1-pppoe switch=switch1 \
    vlan-id=1234

The part I am really unsure about is whether setting new-dst-ports="" is sufficient to drop packets.

Thanks in advance for any guidance!

Who is online

Users browsing this forum: No registered users and 12 guests