Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Vacl

Hi

I am just a little confused about vacl

I know it used to restrict intra vlan traffic.

My question is "do the hosts in same vlan need to on the same switch for vacl to work or can we two or more trunked switches and make vacl work??

1 REPLY
Hall of Fame Super Silver

Re: Vacl

Hello Gursaran,

the VACL applies to all ports belonging to the Vlan so it can apply also to trunk ports and traffic coming from a L2 only access-layer switch.

However, if the objective is to limit communication within an IP subnet the VACL on the multilayer switch can be bypassed if both hosts are on the same L2 only access switch: in this case the frames don't travel to the switch with the VACL applied

Hope to help

Giuseppe

198
Views
5
Helpful
1
Replies