Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
228
Views
0
Helpful
2
Replies

svi access lists

Go to solution
john.wright
Level 3
Level 3

‎09-30-2014 09:47 AM - edited ‎03-07-2019 08:55 PM

Will this access list applied in the manner shown below prevent any traffic from traversing between or visitor network and production?

I really do not want guest network to be able to access production. There will be many production vlans that are 10.x.x.x something.

 

interface Vlan103

des visitor
 ip address 192.168.2.254 255.255.255.0
 ip access-group no-visit in
 

interface vlan 10

des production vlan

ip address 10.49.1.0 255.255.255.0

 

Extended IP access list no-visit

10 deny ip 192.168.2.0 0.0.0.255 10.0.0.0 0.255.255.255

20 permit ip any any

 

 

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Akash Agrawal
Cisco Employee
Cisco Employee

‎09-30-2014 11:09 AM

 

 

Yes this should work.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Akash Agrawal
Cisco Employee
Cisco Employee

‎09-30-2014 11:09 AM

 

 

Yes this should work.

0 Helpful

Go to solution
john.wright
Level 3
Level 3
In response to Akash Agrawal

‎09-30-2014 11:32 AM

Thank you very much

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card