Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Isolate a segment

We have a segment that we would like to isolate , that the host within can only communicate with each other but no with anything in the outside.

I wanted to know what would be better to use Private VLANs or a Firewall just for that segment.

Thank you

Vic

1 REPLY
Hall of Fame Super Silver

Re: Isolate a segment

Vic

There is a solution that is more simple than Private VLAN or firewall. You can very effectively isolate that segment by creating the layer 2 VLAN and not configuring an IP address on the VLAN interface. If there is no layer 3 device connected to the segment and doing routing for the segment then all of the host on the segment can communicate with each other but can not communicate with anything outside of that segment.

HTH

Rick

244
Views
0
Helpful
1
Replies
CreatePlease to create content