I want to be able to apply a MAC address access list on an 806 router. I'm using ethernet on the inside and a static IP delivered by ethernet from a frac T1 for the internet interface. The best possible scenario would be to apply it to the E0 (internal) interface so only known clients could get an IP address (using the dhcp server function of the router). Alternatively, it could be applied to E1 (external) interface so only known clients could get out. I created an access list like the following:
access-list 701 permit H.H.H FFFF.FFFF.FFFF
access-list 701 deny 0000.0000.0000 FFFF.FFFF.FFFF
I tried to apply it to the E0 interface with the command:
access-expresssion in smac (701)
Nothing seemed to happen. I also tried the same command with out instead...nothing. Is there another way to enable this access list on the inside? Can it be enabled on the internet interface? Can it be applied at all?
Thanks in advance.