Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

NO Communicaction in Vlan IPs

Dear Freinds,

Stuck up with a scenerio where i have many IPs / IP pool configured in a single Vlan (for eg:- Vlan 10) or single broadcast domain. and i need/want that no IPs/IP Pool can communicate to any other Ips in Vlan 10. What need to be done to fulfill this.

Regards

3 REPLIES
Blue

Re: NO Communicaction in Vlan IPs

Hi:

You can use the traditional method for isolating a vlan by using ACLs. You would apply an ACL to the layer 3 interface for vlan 10.

Alternatively, you can place the vlan in a VRF, which would isolate other VRFs from it.

HTH

Victor

Re: NO Communicaction in Vlan IPs

Jimmy,

this is a job for private vlans, PVLANs will ensure hosts do not communicate together at Layer 2...this means you still need to have an ACL to take care of Layer 3 communication.

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/pvlans.html

HTH

Sam

Blue

Re: NO Communicaction in Vlan IPs

Sam:

I must have misunderstood. I thought he was trying to block inter-vlan communications, not inter-host (intra-vlan) within vlan 10.

Thanks

118
Views
0
Helpful
3
Replies
CreatePlease to create content