• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 448
  • Last Modified:

Cisco Calayst 2900 Switch?

I had two models of switch in our network. Both are 2950 series as C2950C-24 and C2950-24.

However, I would like to apply access control list to each interface, but C2950-24 could not let me doing so. I am just wondering if the problem comes to the IOS issues or the hardware issues.

I would not only like to apply ACL to each interface, but also by using policy-map and class-map, I would like to apply traffic shape on each interface as well. Does any recommandation on the model I should look for?
0
johntsai90
Asked:
johntsai90
1 Solution
 
Don JohnstonInstructorCommented:
The 2950 is a Layer-2 only switch and as such does not support ACL's applied to interfaces. The 2950-EI, however, does support ACL's applied to the VLAN's.

-Don
0
 
lrmooreCommented:
Most switches were designed with one function in mind - move packets as fast as possible, at layer 2.
What you are asking of the switch is for it to make very advanced routing decisions based on layer 3 traffic.
Some higher-end switches do have Layer 3 functionality, but not full traffic-management capabilities. Again, the whole idea of a switch is to move packets as fast as possible.
The Cisco 3750, with Enhanced feature set provides much more of the features that you are looking for with advanced QoS features
http://www.cisco.com/en/US/products/hw/switches/ps5023/products_data_sheet09186a0080161371.html
0
 
PennGwynCommented:
ACL support on the 2950 has some limitations, which you may be trying to exceed.  See

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/1216ea2/scg/swgacl.htm

policy-map and class-map relate only to routing, and you'll need a router or layer 3 switch to implement those.  Consider the 3350 models.

0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
johntsai90Author Commented:
Yes, I knew that, but the funny part is why does my c2950c-24 can be applied to each interface, but not my c2950 switches? How do I get the QoS ACL on all c2950 switches?
0
 
johntsai90Author Commented:
Also, I found out that by applying to each vlan, ACL isn't really working to block for per-port basis.
0
 
Don JohnstonInstructorCommented:
Right, the ACL only affects traffic on the VLAN. Not the port.

-Don
0
 
johntsai90Author Commented:
Yes, so do you guys know which model from 2950 can support full functionality of ACL, I am not sure if it only for enhanced image IOS version?
0
 
johntsai90Author Commented:
Does anyone knows any Cisco switch can do the QoS properly? I am wondering does catalyst 2900T could do that? or it must be anything with enhanced image.
0
 
Don JohnstonInstructorCommented:
If what you're trying to accomplish is to control traffic on a per-port basis, then you'll need a layer-3 switch. A 3550 or better.

-Don
0

Featured Post

Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now