I have a topology like this.Two L2 Switch has the VLAN X and Y,...Rquiremet is VLAN X and Y shud be able to access the internet.
VLAN X shud Have access to all servers ...
VLAN Y Must have access to only two servers (SQL and FTP).... (Ve to restrict traffic to HTTP Server)
What should be the configuration in all devices to achive this ...
Kindly help ...
Thanks in Advance
Which Vlan do the servers reside?
Just place an incoming ACL on that Vlan for traffic sourcing Vlan Y with permitting access to SQL and FTP server.
interface vlan [server vlan]
ip access-group servers in
ip access-list extended servers
permit ip [vlan y] [sql server]
permit ip [vlan y] [ftp server]
(implicit denied all)