08-12-2010 02:09 PM - edited 03-06-2019 12:27 PM
Hi,
I am not quite familiar with the concept of VLAN access-list. From what I cound understand, typical VACL configuration is like this:
vlan access-map Filter-VL7 10
action forward
match mac address AllowThose
!
vlan access-map Filter-VL7 20
action forward
match ip address 101
!
vlan access-map Filter-VL7 30
action drop
It seems that you define the VACL by accepting some traffic based on ACL and then you drop packets that are not match.
I would like to know if it is possible to restrain traffic like ICMP, and telnet to a specific IP address and allowing all other IP traffic that is not going to that specific address. Any example on how this could be done, if feasible, would be greatly appreciated.
Thanks
Solved! Go to Solution.
08-12-2010 02:33 PM
Hi Stephane,
Have a look at this blog. It has some examples too.
http://blog.ine.com/2009/08/10/vlan-access-control-lists-vacls-tiers-1/
HTH
Reza
08-12-2010 02:33 PM
Hi Stephane,
Have a look at this blog. It has some examples too.
http://blog.ine.com/2009/08/10/vlan-access-control-lists-vacls-tiers-1/
HTH
Reza
08-13-2010 01:51 PM
Hi,
That works perfectly.....
Thanks
Steph
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: