Hi, here is a task i have to accomplish for one of my clients:
VLAN 704 10.23.4.0/24,
VLAN 705 10.23.5.0/24,
VLAN 706 10.23.6.0/24,
I need to seperate these 3 environment so they are not accessible from each other.
VLAN704 has no access to VLAN705 and VLAN706
VLAN705 has no access to VLAN704 and VLAN706
VLAN706 has no access to VLAN704 and VLAN705.
The VLANS are on 4500 L3 switch.
There is existing ACL that could be used:
ip access-list extended ACL-Block
permit ip 192.168.11.0 0.0.0.255 host 10.16.23.51
deny ip host 192.168.11.104 10.16.0.0 0.3.255.255
deny ip 10.16.0.0 0.3.255.255 host 192.168.11.104
Is is good enough to accomodate existing ACL with lines:
deny ip 10.23.4.0 0.0.0.255 10.23.5.0 0.0.0.255
permit ip any any
or something else should be done?