Seperating Traffic & VLANs

Unanswered Question
Sep 19th, 2008
User Badges:

I have a 1841 router connected to the Internet. Connected to the 1841 is a stack of 2960 switches. I have 5 VLANs on my switches and am using sub interfaces on the 1841. I have a public range of IP addresses. I want one of my VLANs to be the public range. If I need a port on that VLAN I will just configure the port on the right VLAN. I am not sure how to configure this? For security I don't want any of this traffic to be routed between the VLANs. I want it completely isolate. Does anyone have any suggestions. Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
singhsaju Fri, 09/19/2008 - 12:10
User Badges:
  • Silver, 250 points or more


You can use access list to block the traffic from other Vlans by binding it to sub-interface.



Pls rate helpful posts

John Blakley Fri, 09/19/2008 - 12:17
User Badges:
  • Purple, 4500 points or more

Why are you putting your public addresses on a VLAN? I'd use your VLANs for only internal connections, and then use FA0 or FA1 for your public addresses. If you need to have a range assigned, create a pool and do one-to-one NAT.



This Discussion