cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
376
Views
0
Helpful
1
Replies

Isolate a segment

Victor Fabian
Level 1
Level 1

We have a segment that we would like to isolate , that the host within can only communicate with each other but no with anything in the outside.

I wanted to know what would be better to use Private VLANs or a Firewall just for that segment.

Thank you

Vic

1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

Vic

There is a solution that is more simple than Private VLAN or firewall. You can very effectively isolate that segment by creating the layer 2 VLAN and not configuring an IP address on the VLAN interface. If there is no layer 3 device connected to the segment and doing routing for the segment then all of the host on the segment can communicate with each other but can not communicate with anything outside of that segment.

HTH

Rick

HTH

Rick
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco