how can i creat a VLAN Acess control list on the asa firewall to control the traffic that goes from vlan to another vlan through the asa firewall?
thanks for your urgent response
You can definitely control traffic coming from one interface of the ASA going out to another interface.
You do this with ACLs, i.e
access-list inside deny ip any host x.x.x.x
access-list inside permit ip any any
access-group inside in interface inside
The above configuration will deny IP traffic from any source to destination host x.x.x.x and will allow everything else.
It is applied inbound on the inside interface.
You can change IP to be TCP/UDP or other protocol and be specific about the ports that you want to filter.
Every ACL should be applied to an interface in the correct direction (in,out) and everything not specified in the ACL is denied.