Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
325
Views
5
Helpful
1
Replies

Vacl

gurkamal01
Level 1
Level 1

‎01-20-2009 09:41 PM - edited ‎03-06-2019 03:33 AM

Hi

I am just a little confused about vacl

I know it used to restrict intra vlan traffic.

My question is "do the hosts in same vlan need to on the same switch for vacl to work or can we two or more trunked switches and make vacl work??

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎01-21-2009 09:07 AM

Hello Gursaran,

the VACL applies to all ports belonging to the Vlan so it can apply also to trunk ports and traffic coming from a L2 only access-layer switch.

However, if the objective is to limit communication within an IP subnet the VACL on the multilayer switch can be bypassed if both hosts are on the same L2 only access switch: in this case the frames don't travel to the switch with the VACL applied

Hope to help

Giuseppe

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card