Link Layer Filtering not supported on popular equipment?

Mark Tinka mark.tinka at seacom.mu
Thu Mar 27 20:39:02 UTC 2014


On Thursday, March 27, 2014 06:42:12 PM Michael Loftis 
wrote:

> Similar issues with ACLs.  There are some options in
> Cisco (not certain if any of dell's products have this)
> that basically keep ports from talking to eachother, but
> allow them to talk to the upstream port (usually a
> router that can then enforce deeper ACLs and such).

Those would be private VLAN's in classic solutions, and 
split horizon bridge domains on carrier Ethernet platforms.

I find the latter simpler and more elegant, but limited to 
specific hardware.

Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20140327/768f21c6/attachment.bin>


More information about the NANOG mailing list