Our customer have many VLANs which have our router subinterfaces as default gateways to the Internet. Now for security reason, our customer want to prevent traffic between hosts in a VLAN. Of course we can divide VLANs into small subnets /30 but our customer doesn't want to change it because it affects to IP of many hosts, servers in their network. Instead, they want us to set access-list in our router to prevent it. My question is if it is possible. In my opinion, it is not.
Thank you all. Can you give me few ways of using ACL to do it? Because as far as I know layer 2 traffic will go directly from host to host using MAC forwarding table, not transit through our router. So how can our router apply ACL for it?
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.