Solved: Cisco 891F two Vlans which should not see each other

farzaneh64 · ‎08-25-2016

Hi,

I have a Cisco 891F router, I created two vlan1, vlan2.

vlan1: 192.168.0.1 255.255.255.0

vlan2: 192.168.100.1 255.255.255.0

vlan1 is used for the office workstations and it should be private and vlan2 is used for public wireless. These two vlans should not see or access each other.

i did setup the router, and it is working fine but from vlan2 i can ping vlan1. So for now i set the public wireless off.

please let me know how i can do this.

Thanks

Pawan Raut · ‎08-28-2016

Please marked this as correct answer and rate the post. This will helpful to other which having same issues.

View solution in original post

Pawan Raut · ‎08-25-2016

create acl that vlan 2 can't commnicate with vlan 1.

access-list 110 deny ip any 192.168.0.0 0.0.0.255 log

access-list 110 permit ip any any

!

int vlan 2

ip access-group 110 in

!

Please rate for useful post

farzaneh64 · ‎08-26-2016

Hi Pawan,

It worked, thanks so much

Pawan Raut · ‎08-28-2016

Please marked this as correct answer and rate the post. This will helpful to other which having same issues.

e.ciollaro · ‎08-29-2016

Hi,

I think that 891 series routers supports VRf-Lite, this could be another option to consider.

For example, one benefit could be to avoid spoofing. Using ACL, an host spoofing its IP address could send traffic to the other VLAN

Bye,

e