Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

assistance requested in configuring VLANs

I have VLAN A with Server A1, Server A2, etc. on it.

I have VLAN B with Server B1, Server B2, etc. on it.

I need Server A1 (on VLAN A) to see Server B1 (on VLAN B) only ? no other devices.

While there may be multiple ways to accomplish this, I?m hoping that you can provide me with the best way/s (i.e.; how to configure this on the switch or any other ways). Please note that I am hoping to avoid installing a second NIC in Server A1.

Thanks in advance.

3 REPLIES
Hall of Fame Super Blue

Re: assistance requested in configuring VLANs

Hi

Are the L3 vlan interfaces on the switch or on a router. Assuming they are on a switch

access-list 101 permit ip host "server A1 ip address" host "server B1 ip address"

access-list 101 deny ip host "server A1 ip address" any

access-list permit ip any any

interface vlan A

ip access-group 101 in

Couple of things to note

1) The above access-list allows server A1 to only talk to server B1 and absolutely nothing else.

2) There is a permit ip any any at the end of the access-list to allow other server traffic.

HTH

Jon

New Member

Re: assistance requested in configuring VLANs

Is there routing between the VLANs at the moment or does that need setting up as well?

Basically we need to find out where the routing is taking place and apply the access control list there.

New Member

Re: assistance requested in configuring VLANs

The best way would be Private VLANs but make sure your switch support this. below is the link gives more information

http://www.cisco.com/en/US/tech/tk389/tk689/technologies_configuration_example09186a008017acad.shtml

173
Views
0
Helpful
3
Replies