I have 2 switches, they are connected via an access port (not trunk). I need to block ANY type of traffic between these 2 switches except a couple of hosts that I could define in an ACL.
say for example the access I wanted to permit across switches is :
192.168.0.1 -> 192.168.100.1
What type of access list configuration and (type) would I need to use to ensure ALL other traffic types where blocked (INCLUDING NON-IP TRAFFIC) ?
Would this be a MAC and/or IP based ACL ?
Presumably on either end of the link as the port based ACL will only filter inbound ?
Would a VLAN map be more extensive ? As this is only a temporary situation, I could (I assume) put a switch in between these 2, with a VLAN map applying only on this switch in the middle (to save complications on the "live" switches).
Any pointers would be appreciated.