Question on DHCP Broadcast for inter-VLAN

Answered Question

Hi all,


I have a delima and wanted to know if someone here could shine a light on this issue.


We have 2 6513's interconnected.

We also have 1 3com 4400POE switch where IP sets (Mitel) are connected to and PC's behind the set.


the Data Vlan is 104 and the Voice Vlan is 108 as configured in the cisco switch.


The 3com only has Native 1 and Voice 108.

The links between the 3com and the 6513 as far as configuratioon on cisco is ACCESS VLAN 104.


Where the problem arises, is Inter-Vlan traffic.


We have several VLANS, and we only want specific VLANs to talk to each other. This is controlled by a set of Fortigate FortiNET systems. But when we take those out of service, somehow the traffic between VLANs is allowed.


What best way to control traffic between VLANs? Example; VLAN104 and talk to 108 but not 106 or 100.... etc...


IP routing is enabled on the 2 6513's.


Thanks for your help



Correct Answer by martin_lx1980 about 9 years 7 months ago

Hi

I think you should use ACL and apply ACL to relevant vlan interface on 6513

for example:

access-list 101 permit ip

interface vlan 104

ip access-group 101 in

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
martin_lx1980 Tue, 07/03/2007 - 04:35

Hi

I think you should use ACL and apply ACL to relevant vlan interface on 6513

for example:

access-list 101 permit ip

interface vlan 104

ip access-group 101 in

Actions

This Discussion