Reset Search
 

 

Article

How to block BPDU packets on a port via ACL

« Go Back

Information

 
TitleHow to block BPDU packets on a port via ACL
Objective
Block BPDU packets on a desired port / VLAN with an ACL.
Environment
EXOS All
Procedure
The following ACL can be used to block all BPDU packets on a port / VLAN because they all use the same destination MAC address:

edit policy <policy name>.pol
entry bpdu {
    if {
        ethernet-destination-address 01:80:c2:00:00:00;
        }
        then 
        {
        deny;
        count bpdu;
        }
    }


The ACL can be applied with either of the following commands. The first will apply it to ports, and the second will apply to a VLAN:

configure access-list <policy name> ports <port list> ingress

configure access-list <policy name> vlan <vlan name> ingress
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255