I have a Cisco 881 router configure with 3 VLANs on three different fastethernet ports. Each vlan has a separate network address vlan2 = 192.168.10.0, vlan3 = 11.0, vlan4 = 12.0
My goal is to keep the VLANs separate from each other.
( Example as: vlan2 should not be able to ping or gain access through the run box typing \\192.168.11.2 to a workstation in vlan3)
One way i thought was to use ACLs to permit and deny.
Each VLAN needs to "get out" to the Internet on fastethernet 4 WAN port.
I need assistance understanding how ACLs work and how to set them in place.
So far, I've tried many different combinations of ACLs with not any success.
attached is a general config