Meraki

Community

Port ranges in switch ACLs -- when?

jaymon123
Here to help
‎Apr 9 2024 2:32 PM
‎Apr 9 2024 2:32 PM

Port ranges in switch ACLs -- when?

In 2020, I noticed that Meraki switches do not support port ranges (e.g., 1200-1350):

https://documentation.meraki.com/MS/Other_Topics/Switch_ACL_Operation

Can someone from Cisco comment on whether this is on the road map or what?  This is huge deficiency and causes Meraki admins to have to do weird things to block inter-subnet traffic.  It was hard to believe that zero progress has been made on this in 4 years.

Labels:
0 Kudos
2 Replies 2
alemabrahao
Kind of a big deal
‎Apr 10 2024 3:21 AM
‎Apr 10 2024 3:21 AM

I believe the case is that ACLs on MS are more like a standard ACL than an extended one compared to Catalyst.

Personally, I still prefer Catalyst switches due to the various limitations of the MS.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Apr 10 2024 12:28 PM
‎Apr 10 2024 12:28 PM

The other big gotcha is that MS ACLs can only have 128 entries.

Perhaps this might change now that C9300s are starting to roll out.

0 Kudos
li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.