VACLs and MAC ACLs

Hello, 

I Just completed the MAC ACL and VACL exercises in section 2 of the ccie security technologies workbook.

The task asks you to filter several layer 2 protocols, which must be done with a mac access-list.

This means that you have to know the ethertype hexidecimal format (0x2000, 0x42, 0xAAAA, 0x2003, etc.).

My question is, on the lab, are they going to provide that information, or do we have to have the ethertypes memorized for various protocols.

There is a list of ethertypes in the documentation under PRODUCTS>WIRELESS>ACCESS POINT>CISCO AIRONET 350>AIRONET 350 ACCESS POINTS>CONFIGURATION GUIDES>ANY OF THE 12.X(X)JA LINKS>PROTOCOL FILTERS

BUT.....this list is incomplete.  it does not have STP,UDLD,VTP, etc.

So where are we supposed to get the ethertype in this scenario?

Comments

  • Hi,

      Technically you should know the commoly used ones, like ARP and IP. Otherwise, they should give you the ethertype values. Still, they can do whatever in the exam, meaning they can ask you something which is NOT documented.

    Regards,

    Cristian.

Sign In or Register to comment.