NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Mac based ACL to block certain Ethertypes
Hi all,
after long investigation of dropped RX network packets on VM network interfaces, I finally figured out that AVM (FritzBox Router) are sending broadcast messages with two unknown ether types via broadcast into my network. That lead to several dropped packages on my network interfaces (source: https://blog.hambier.lu/post/tracking-dropped-packets)
To fix this issue, I wanted to create a mac based ACL rule to simply block all packages with those two ether types (0x8912 and 0x88e1)
Therefore, I created two rules by simply defining the two user specific ether types with action "Deny".
As soon as I assign this rule set to one specific port (e.g. Port 1 --> AVM FritzBox), this Port seems to completely block all traffic so that the AVM FritzBox is not reachable anymore at all until I deactivate the ACL.
Can anyone help me to find the issue behind those rules? The target should be that all requests with this Ethertype gets blocked, all other traffic should be allowed
Thanks and best regards
Ben
1 Reply
Maybe an explicit allow like this could help?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
