Why doesn't the Layer 2 ACL on AR1220 series take effect sometimes


On AR1200 series, the Layer 2 ACL does not apply to the Layer 2 traffic between the eight fixed LAN interfaces.

Other related questions:
Why do ACLs sometimes not take effect
The device delivers access control lists (ACLs) to MAC-based users only after the IP addresses are learned.

Why can Layer 2 ACLs not take effect on AR1200 series
Fixed local area network (LAN) interfaces on the AR1200 series do not support Layer 2 access control lists (ACLs).

Why doesn't ACL delivery take effect sometimes?
For users who access a router based on MAC addresses, the router does not deliver an ACL until the router learns the IP addresses of the users.

Why doesn't the configured CPCAR value take effect
The CPCAR value is configured in the anti-attack policy view. When this policy is applied to the SRU or LAN interface card, the value takes effect.

Why is a Layer 2 service interrupted for five minutes sometimes
The default interval for aging switch MAC addresses is five minutes. Check whether the aging of MAC addresses makes response packet traffic be forwarded to incorrect ports, interrupting services. In addition, check whether the traffic is forwarded through different boards, and whether MAC entries must be synchronized between boards to perform Layer 2 forwarding. Check whether services are impacted when MAC entries are not synchronized. NOTE: Run the display mac-address aging-time command to query the MAC address aging time.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top