Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

svi access lists

Will this access list applied in the manner shown below prevent any traffic from traversing between or visitor network and production?

I really do not want guest network to be able to access production. There will be many production vlans that are 10.x.x.x something.

 

interface Vlan103

des visitor
 ip address 192.168.2.254 255.255.255.0
 ip access-group no-visit in
 

interface vlan 10

des production vlan

ip address 10.49.1.0 255.255.255.0

 

Extended IP access list no-visit

10 deny ip 192.168.2.0 0.0.0.255 10.0.0.0 0.255.255.255

20 permit ip any any

 

 

 

 

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

  Yes this should work.

 

 

Yes this should work.

2 REPLIES
Cisco Employee

  Yes this should work.

 

 

Yes this should work.

New Member

Thank you very much

Thank you very much

30
Views
0
Helpful
2
Replies