Block an IP in the same Vlan

Unanswered Question
May 27th, 2009
User Badges:

Dear All,


How can i block a single IP with in a VLAN. this ip should not be able to access any other ips in the same vlan as well as other vlan in the network.


i have cisco WS-C3560G-48TS switch with me. please help me to do the same


Thanks


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
arunsing Wed, 05/27/2009 - 02:16
User Badges:

I think you can create an inbound access-list and apply it to the vlan.

access-list 101 deny ip host any

access-list 101 permit ip any any


I am assumming that you are using the switch as an L3 switch

iyde Wed, 05/27/2009 - 02:40
User Badges:
  • Silver, 250 points or more

Try looking into the Private VLAN feature.

The ACL method mentioned will not block trafic within the same VLAN.

HTH.

mahmoodmkl Wed, 05/27/2009 - 02:43
User Badges:
  • Gold, 750 points or more

Hi


U need to use vlan-maps to achieve it.


Thanks

Mahmood

cisco_lad2004 Wed, 05/27/2009 - 03:00
User Badges:
  • Gold, 750 points or more

As Ingolf mentionned, you need PVLAN to tale care of L2 blocking combined with an ACL for L3 blocking.


HTH


Sam

Actions

This Discussion