2960 Allow only PPPoE on port

Hi all,
is there any way to allowe only PPPoE comunication on ethernet port on 2960X or 2960S catalyst switches?
Thanx
BR
David

Hi Reza,
I think David's question focused on something else: can you configure an access port on a switch so that the only frame it accepts is a PPPoE frame?
In my opinion, that should be possible - the easiest way of doing that would simply be to configure a port-ACL (PACL) that drops all IP traffic whatsoever. PPPoE-encapsulated packets are not treated as IP packets by the switch, so IP PACL will not apply. So simply doing something like this should do the trick:
ip access-list standard NoIP deny any!interface FastEthernet0/1 ip access-group NoIP in
If we wanted to be very precise, we could also create a MAC ACL to further narrow down the non-IP traffic allowed through a port. PPPoE uses EtherType values 0x8863 and 0x8864. The MAC ACL would need to be carefully specified, though, to allow other Layer2 control and management plane traffic (STP, DTP, VTP, CDP, LLDP, PAgP/LACP, UDLD, LOOP...), so it could be more difficult to create properly.
I even believe that creating a VACL would be possible although the VACLs are not officially supported on 2960 Catalysts yet (still, with a very recent IOS, they can be created and used just fine).
Best regards,
Peter

Similar Messages

  • How do I add an airport extreme to a cable modem with only one ethernet port, while keeping that port connected to my Mac?

    I have a mac pro connected by ethernet to a cable modem via ethernet.    There is only one ethernet port on the modem.   
    I want to keep the Mac connected via ethernet for speed.    Is there a way that I can add an airport extreme to this set up - for my ipad and roku, and for guests to use - or do I need to buy a router to put between the modem and the mac?
    If I need a router, what kind?
    Thanks.

    The modem connects to the WAN "O" port on an AirPort Extreme router.
    The Mac Pro connects to one of the three LAN <-> ports on the AirPort Extreme router.
    Or if you do not need the ability to connect a hard drive to the USB port on the router, you can save a bit by using an AirPort Express.
    The modem connects to the WAN "O" port, the Mac Pro connects to the LAN <-> port
    Either the AirPort Extreme router or AirPort Express router will allow up to 50 wireless device to connect.
    There are many other wireless modems offered by other manufacturers as well.

  • I will be using a HDMI cable to connect an Apple TV box and a Comcast cable TV box to my TV. My TV has only one HDMI port.

    I will be using a HDMI cable to connect an Apple TV box and a Comcast cable TV box to my TV. My TV has only one HDMI port.
    To do this I will need a 2x1 HDMI splitter or a 2x1 HDMI auto switch (preferred).
    ?Is there any Apple TV HDMI port voltage?
    When using a HDMI auto switch to connect two devices to a HDMI TV, the
    Auto switch cable box only works for components that do not output continuous voltage over HDMI port when turned off.
    Do you know of any other solutions? Componets? Actual expierances?
    Full text below.
    Cable : HDMI switches expand the number of available HDMI ports on a high definition television allowing connection of cable boxes, Blu-ray players, and game consoles. A side benefit is that cable clutter is also eliminated by running a single HDMI cable to your HDTV from a switch and relocating the HDMI ports to a concealed location. The problem with most HDMI switches is that you have to either get up to push a button, or hunt for the remote control, to switch sources. The true mark of any great switching component is an ability to perform its function and remain transparent in its operation. This automatic HDMI switch is a plug-and-play away from offering everything you are looking for in an HDMI switch. Select a single output from up to three devices for signal delivery to your HDTV. Smart operation provides complete control for connect-and-forget operation. Powering on a device gives it output priority over the other devices. By powering down the device in use, output priority is returned to the last powered on device. Note: Auto switch function only works for components that do not output continuous voltage over HDMI port when turned off.
    Here is a typical HDMI 3-in 1-Out HDMI Auto Switch
    http://www.google.com/products/catalog?q=hdmi+auto+splitter&rls=com.microsoft:en -us&oe=UTF-8&startIndex=&startPage=1&rlz=1I7GGLF_en&um=1&ie=UTF-8&tbm=shop&cid=1 0340892278237558532&sa=X&ei=fTPmTtOiHuXq0gGc3sHfBQ&ved=0CHsQ8wIwAA#
    Thanks for any help. Sincerely,
    HDMI auto switch?

    Hi Erico,
    I tried what you said again but without success. I even updated the driver so that that audio driver is the same as the graphics driver i.e.. NVIDIA but this has not helped either:
    Do you have any other ideas?
    Many many thanks,
    Louise

  • ADF and MSSQL 2005 problems - FOR UPDATE clause allowed only for DECLARE C

    Hi all.
    I have a legacy application which uses MS SQL server 2000 / 2005. I've started to build up a new version of this application using JDev + ADF stack.
    Everything went ok until I've tried to update some data in a Form. I'm getting this error:
    com.microsoft.sqlserver.jdbc.SQLServerException: Line 1: FOR UPDATE clause allowed only for DECLARE CURSOR
    Can someone figure out what's wrong?
    1) In a MSSQL server connection string, normally we define the 'SelectMethod' parameter to 'cursor', as follows: jdbc:sqlserver://$host$:$port$;databaseName=dbserver;SelectMethod=cursor
    Since I was not able to do this through my project's 'Application Resources > Connections' screen, I could not evaluate if this is the cause
    2) I'm trying to follow the steps of an Oracle tutorial (http://www.oracle.com/technology/obe/obe11jdev/ps1/ria_application/developriaapplication_long.htm#ad), of course using MS SQL server instead of Oracle, and using some master->detail tables like the example suggests (in the tutorial, I've reached the step 11, then tried to update a record, which causes the mentioned exception)
    Follows the stacktrace:
    <Utils><buildFacesMessage> ADF: Adding the following JSF error message: Line 1: FOR UPDATE clause allowed only for DECLARE CURSOR.
    com.microsoft.sqlserver.jdbc.SQLServerException: Line 1: FOR UPDATE clause allowed only for DECLARE CURSOR.
         at com.microsoft.sqlserver.jdbc.SQLServerException.makeFromDatabaseError(Unknown Source)
         at com.microsoft.sqlserver.jdbc.IOBuffer.processPackets(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerStatement.getNextResult(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerStatement.getMoreResults(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerStatement.seekToOutParams(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerPreparedStatement.getPrepStmtHandle(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerPreparedStatement.doPrepExec(Unknown Source)
         at com.microsoft.sqlserver.jdbc.SQLServerPreparedStatement.executeQuery(Unknown Source)
         at oracle.jbo.server.BaseSQLBuilderImpl.doEntitySelectForAltKey(BaseSQLBuilderImpl.java:707)
         at oracle.jbo.server.BaseSQLBuilderImpl.doEntitySelect(BaseSQLBuilderImpl.java:546)
         at oracle.jbo.server.EntityImpl.doSelect(EntityImpl.java:7789)
    Regards,
    Luciano S. Lorencini, SCJP, SCWCD

    So, I`ve created a test project and use the MSSQL flavor to create my Business Components.
    After repeated all the steps, the error did not happen again.
    But some strange behavior happen: I change some data and click the "Submit" button. The changed data appears ok in screen, but the changes were not committed in database!
    Do I need to explicitly tell ADF to commit that changes somewhere?
    Greetings,
    Luciano S. Lorencini, SCJP, SCWCD

  • Is SPAN port not allowed in Nexus FEX Port ?

    Hi
        Customer want me to defined a SPAN port on N2K, it is a fex port. when I configure I got the following statement from the switch.
    Is there any way to solve the problem?
    n5k-N2K(config-monitor)# destination ?
      interface  Configure interfaces
    n5k-N2K(config-monitor)# destination interface eth102/1/18
    ERROR: Eth102/1/18: Configuration not allowed on fex interface
    N5K VERSION
    Cisco Nexus Operating System (NX-OS) Software
    TAC support: http://www.cisco.com/tac
    Copyright (c) 2002-2009, Cisco Systems, Inc. All rights reserved.
    The copyrights to certain works contained herein are owned by
    other third parties and are used and distributed under license.
    Some parts of this software are covered under the GNU Public
    License. A copy of the license is available at
    http://www.gnu.org/licenses/gpl.html.
    Software
      BIOS:      version 1.2.0
      loader:    version N/A
      kickstart: version 4.0(1a)N2(1)
      system:    version 4.0(1a)N2(1)
      BIOS compile time:       06/19/08
      kickstart image file is: bootflash:/n5000-uk9-kickstart.4.0.1a.N2.1.bin
      kickstart compile time:  2/25/2009 0:00:00 [02/25/2009 08:29:12]
      system image file is:    bootflash:/n5000-uk9.4.0.1a.N2.1.bin
      system compile time:     2/25/2009 0:00:00 [02/25/2009 08:56:57]

      Hi,
    A FEX port cannot be configured as a SPAN destination. Only a switch port can be configured and used as a SPAN destination.
    See link below for more info:
    http://www.cisco.com/en/US/docs/switches/datacenter/nexus5000/sw/release/notes/Rel_5_1_3_N2_1/Nexus5000_Release_Notes_5_1_3_N2.html
    HTH

  • Vlans allowed to FEX member port

    Hi,
    I am getting confused with FEX Associated to 7k.  I am going to connect 2k Fex to 7k and using 4 10g link to 2k configuring ether-channel.  Then Fex associating under ether-channel configuration, I hope it is understandable, I am not expert in Nexus so trying to explain as much as possible,
    in summary  7k --> 4*10G--->2k
    Sample configuration as below:
    N7k-1(config)# feature fex
    N7k-1(config)# fex 101
    N7k-1(config-if)# interface eth1/1-4
    N7k-1(config-if)# channel-group 101 mode on
    N7k-1(config-if)# interface po101
    N7k-1(config-if)# switchport mode fex-fabric
    N7k-1(config-if)# fex associate 101
    Please correct me if I am configuring in wrong way.  Now I dont understand, where is the trunk command used and how I can assign multiple vlans in 2k port configuration.  I mean, some ports of 2k are part of vlan 10 and some port of 2k are part of vlan 11 and so on.
    Is it possible?  How may VLANs i can allowed to FEX associated ether-channel.

    Hi here is my configuration on both nexus;
    Nexus 1 (Primary):
    vlan 1000
    interface Vlan1000
      no shutdown
      no ip redirects
      ip address 10.16.0.2/24
      hsrp version 2
      hsrp 1000
        preempt
        priority 120
        ip 10.16.0.1
    interface port-channel11
      description *** For Non-vPC Trunk to N7K-02 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
    interface Ethernet3/47
      description *** For Non-vPC Trunk to N7K-02 port eth3/47 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
      channel-group 11 mode active
      no shutdown
    interface Ethernet4/47
      description *** For Non-vPC Trunk to N7K-02 port eth4/47 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
      channel-group 11 mode active
      no shutdown
    interface port-channel10
      description *** For vPC Peer Link to N7K-02 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      spanning-tree port type network
      vpc peer-link
    interface Ethernet3/48
      description *** For vPC Peer Link to N7K-02 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      channel-group 10 mode active
      no shutdown
    interface Ethernet4/48
    description *** For vPC Peer Link to N7K-02 ***
    switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      channel-group 10 mode active
      no shutdown
    Nexus 2 (Secondary):
    vlan 1000
    interface Vlan1000
      no shutdown
      no ip redirects
      ip address 10.16.0.3/24
      hsrp version 2
      hsrp 1000
        preempt
        priority 110
        ip 10.16.0.1
    interface port-channel11
      description *** For Non-vPC Trunk to N7K-01 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
      spanning-tree port type network
    interface Ethernet3/47
      description *** For Non-vPC Trunk to N7K-01 port eth3/47 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
      channel-group 11 mode active
      no shutdown
    interface Ethernet4/47
      description *** For Non-vPC Trunk to N7K-01 port eth4/47 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1000
      channel-group 11 mode active
      no shutdown
    interface port-channel10
      description *** For Peer Link to N7K-01 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      spanning-tree port type network
      vpc peer-link
    interface Ethernet3/48
      description *** For vPC Peer Link to N7K-01 port eth3/48 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      channel-group 10 mode active
      no shutdown
    interface Ethernet4/48
      description *** For vPC Peer Link to N7K-01 port eth4/48 ***
      switchport
      switchport mode trunk
      switchport trunk allowed vlan 1007
      channel-group 10 mode active
      no shutdown
    Note: Everything up and running, but only issue is vlan 1000 is down in secondary switch and hsrp is not forming.  But it was working when vlan 1000 was allowed in vPC peer link problem appeared while I remove vlan 1000 from peer link and allowed into non-vPC port-channel and link.
    Thanks,
    Happy Cistmas and new year to you.

  • Applejack breaking Mail - refused to allow a connection on port 25

    Hi folks
    ran applejack in auto mode only to have it kill Mail... can no longer send mail... get the following message...
    "This message could not be delivered and will remain in your Outbox until it can be delivered.
    The server "mail.*.com.au" refused to allow a connection on port 25."
    I got this once before and thought it was only with the UB version of Applejack so downgraded to the previous version but did it again... worked out last time how to fix it but cnanot remember what I did...
    cheers Trevor

    Hello Trevor.
    Although this occurs after running AppleJack, it may be a coincidence only but the following was copied from AppleJack's website.
    AppleJack is a user friendly troubleshooting assistant for Mac OS X.
    And IMO, troubleshooting means just that - to be used when you are experiencing a problem.
    How often do you run AppleJack? If running AppleJack in auto mode causes a problem when you aren't experiencing any problems, I'd seriously consider not running it in auto mode.
    Check this link for recommended maintenance for OS X focusing on the Maintenance Myths section.
    http://www.thexlab.com/faqs/maintainingmacosx.html

  • Mid 2011 Macbook Air - Yosemite keyboard and trackpad stopped working, the only button that worked was the power button, only one USB port works.

    I have a Mid 2011 Macbook Air.
    Upgraded to Yosemite last week.
    Three days ago I was using my Macbook Air for the first time since upgrading to Yosemite. I had been using my Macbook Air for approximately 30 minutes, I was using safari and the keyboard and trackpad stopped working (would not respond). The only button that worked was the power button.
    I rebooted and they were still not working. I plugged in a USB mouse and external USB keyboard, only one USB port would work (the Left USB port if looking at the screen) so I had to swap between keyboard and mouse.
    After logging in there is a bluetooth icon at the top of the screen with a sawtooth line through it. Bluetooth is unavailable and the bluetooth icon is missing from the system preferences menu.
    If I run a hardware test by holding D (on USB keyboard) at startup it says that no problems are found and at the conclusion of the test the keyboard and trackpad start working again. When I log on the bluetooth is working again.
    I shut down the Macbook Air and when I started it again the keyboard and trackpad and right side USB ports were all not working again. I logged in using the USB keyboard and mouse and the bluetooth not available sawtooth icon had returned.
    I ran the hardware test again and at the conclusion of the test the trackpad and keyboard started working again.
    I have tried deleting com.apple.Bluetooth.plist and com.apple.Bluetooth.plist.lockfile from /Library/Preferences/ and tried resetting SMC and Power Functions but this did not fix the issue. The only thing that seems to work is running a hardware test - obviously I don't want to do this every time I use the computer.
    I do not believe any hardware is faulty/damaged - I think it has something to do with bluetooth/Yosemite.
    I do not have the Macbook with me at the moment, if you have suggestions that I can try or additional checks/info you require please let me know and I can get back to you.
    Thanks,
    John

    Hi!
    I have exactly the same problem, and I can't find any solution.
    I can't even track down the root of the problem: the Bluetooth/Wifi module? The trackpad? The keyboard/top case? The logicboard?
    I've tried all the usual: SMC/PRAM reset, clean install, kext cache clearing.
    Any suggestion is greatly appreciated!

  • How to connect many devices with only one FW800 port in iMac?

    Hi,
    I am upgrading to a new Intel iMac from a 2004 vintage Dual2.0GHz PowerMac. I currently have 8x d2 Quadra drives chained by FW800, and 2x Iomega drives connected vis FW400 hub which also connects HD cams.
    My questions is that with only one FW800 port in iMac, I think my devices connectivity is the following?
    (1) Get a FW 800 hub (I can only find 2 port ones at the Apple store and BestBuy)
    (2) Connect the d2 Quadras to one port of the FW800 hub
    (3) Get a FW 800 to FW 400 cable
    (4) Connect my 6 port FW400 hub to the 2nd port of the FW800 hub
    Thanks for reviewing this solution, and I would also appreciate other suggestions or hear about your experiences if you have a similar set-up.
    Will

    In addition to your listed considerations, you should consider the following.
    Many storage needs do not required FireWire 800 speed. For example, USB 2.0 works fine for your Time Machine backup drive. If you are just storing user data such as your iPhoto or iTunes media files, USB 2.0 is more than fast enough. So, as much as possible, if any of those external drives have USB 2.0 connections and the data storage does not need FireWire 800 speed, offload as much as possible to USB 2.0. I used to be a +FireWire snob+, but since getting an Intel iMac, I find that USB 2.0 works quite well for most data storage purposes.
    There are new hard drives that are power efficient and as large as 2TB. Consolidate your data storage needs onto a smaller number of very large drives, partitioned as needed. This will make your setup more reliable (smaller number drives), and save reduce power consumption. If any of your current externals are SATA, you can probably replace the existing drive with an extra large one.
    So, I think you setup should be, extra large FireWire 800 drive connected to the FireWire 800 port directly. Using a 9-pin to 6-pin cable, connect the FireWire 400 hub. Connect any non-storage FireWire 400 devices there. Do some data transfer testing to make sure having the 400 hub there on the chain does not cause the 800 connection to slow down.
    Connect other drives as needed using USB 2.0, existing or new. Retire the smaller of your external drives.

  • How can I get two hard drives connected to the Airport Extreme. There's only 1 USB port.

    I believe I want to use TWO USB Hard Drives with my Airport Extreme, but it seems there is only 1 USB port.
    I am currently using that USB port for my backup external hard drive (works with Time Machine). But now I have decided I want a common hard drive for music, photos, etc. for the two Macs in my home to share. I read that you do that via the same port.
    What should I do? Is there a way to use 2 hard drives - a common shared and one for time machine?
    Please advise and thank you!

    singer777 wrote:
    I believe I want to use TWO USB Hard Drives with my Airport Extreme, but it seems there is only 1 USB port.
    Use a (powered) USB hub.
    I am currently using that USB port for my backup external hard drive (works with Time Machine).
    I hate to have to tell you this, but backing-up that way is unreliable and not supported by Apple.   See:  Using Time Machine with an Airport Extreme Air Disk.

  • How to access servlet only via specific port?

    Hi all,
    I have an app with 2 servlets, I want each servlet to be accessible via a different port.
    so I open HTTP on my web server, on port 80 and 18080, but now BOTH servlets are available via BOTH ports.
    how can I make sure that servlet 1 is accessible only via port 80, and servlet2 is only accessible via port 18080?
    tnx

    Run two servers.

  • How can I see shared pc with firewall set to allow only essential services?

    How can I see shared pc with firewall set to allow only essential services?
    So far if I set it as above then shared does not show up? I have to set the firewall to set access to specific applications and services to get access to my windows based hard drive.
    Cheers
    Mike R

    Ok I solved it myself. Not an ideal solution as I have to connect it manually each time but it will do... Unless anyone has a way to have it auto connect when I start the mac.
    Cheers
    Mike R

  • So my I phone 4s volume has decided to pack  allowing only my phone to make sounds when I have an incoming call, I can also here fine using facetime and receiving calls. YouTube, soundcloud, any of I players will no longer play sound. I've restored the ph

    So my I phone 4s volume has decided to pack  allowing only my phone to make sounds when I have an incoming call, I can also here fine using facetime and receiving calls. YouTube, soundcloud, any of I players will no longer play sound. I've restored the phone using iTunes on my laptop and checked all the volumes are turned up and the button at the left hand Side of the phone is in the correct position.

    Try inserting and re-inserting your headphones 7 or 8 times. Also try cleaning out the headphone jack in case of debris that might be interfering with the connection/disconnection.

  • Solution to only TWO USB ports, please

    I should have paid more attention when I bought my Mac. I didn't realize there were only TWO USB ports on board. My job requires me to be mobile, and on any given day, I could be using up to 10 USB ports. I know they make hubs, one of which I've tried, but it didn't work. Does anyone recommend a particular brand of hub that's RELIABLE and can handle both input and output?
    I'm stunned that Apple would have just 2 USB ports. My old Dell had 4, and if I remember right, I could have specified even more when they were building it.
    Diane

    Yes, that's the ExpressCard/34 port (labeled in this linked image). The ExpressCard port also be used for media card readers, WAN (wireless broadband) cards, etc. Good for a USB expansion hub because it's a small form factor and won't take up one of the two existing USB ports.

  • Coding in the Trasformation  to allow only few currency types.

    HI
    Can you please let me know how i can write a program which allows only few currency's to be accepted and if other then these currency exists that particular record to be deleted before loading into the PSA
    I wrote a code llike this but this is only valid for ZAR
    *delete SOURCE_PACKAGE where CURRENCY ne 'ZAR'.
    for example if i want to allow ZAR, USD, EUR only
    hwo can i code this in the Start Rotine in the TRansformations.
    please let me know
    regards
    Krishna Mohan.

    Hi Krishna,
    You can try this code :
        data: s_cur   type c length 3.
        data : i_rng_cur like range of s_cur.
        data : rng_cur  like line of i_rng_cur.
        rng_cur-sign = 'I'.
        rng_cur-option ='EQ'.
        rng_cur-low = 'ZAR '.
        append rng_cur  to i_rng_cur.
        rng_cur-low = 'USD '.
        append rng_cur  to i_rng_cur.
        rng_cur-low =  'EUR '.
        append rng_cur  to i_rng_cur.
       delete source_package where CURRENCY  not in i_rng_cur .
      This code will delete all currency other than  ZAR ,EUR ,USD.You can append more values if you want .
    Regards,
    Jaya Tiwari

Maybe you are looking for

  • Is it possible to move "MacIntosh HD" icon off desktop?

    I am really OCD and I am trying to get all the icons off of my desktop. So I was wondering if you are able to move the hard drive icon off of the desktop and just access it through the shortcut on the left side of the finder window. I see that you ca

  • Error like -- No outbound binding found for

    i created a order in one system  and want to send to another system i got errors like given below....can u check and helpme me... how to solve the issue plz check both errors... SAP: Stack> Error when determining the inbound interface: For Outbound I

  • Black border around my flash video in internet explorer

    The website that I built, I used Adobe media encoder and flash to make it a .flv file, the website works fine as far as playing the pages with video in Safari and Firefox, when I go to the same website in internet explorer the video plays with a big

  • Which table do "Basic data text" of material master record in?

    Hi All:         There is tab with name of "Basic Data text" in additional data of material master, my question is which table record this information? BR Kevin

  • Syncing iphone 4s with macbook pro w/snow leopard 0sx

    I am able to sync event from my laptop to my phone, but events created on my phone are not showing up in ical. So frustrating!! Any ideas? Thank you.