Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

VLAN ACL on cisco 6500

Hi community,

i have 10 vlans configured on cisco 6500 switch and there subnet as follows

10.1.1.0/24 ( Vlan 1 i.e. Management vlan)

    to

10.1.10.0/24 (Vlan 10)

I had created a newly vlan and it is Vlan 11 ( 192.168.5.0/24)

I dont want to a newly created vlan to access any vlan from 1-10 and vice versa

Please can someone help me.

Thanking in advance

1 REPLY

Re: VLAN ACL on cisco 6500

Hello,

It's something like this:

ip access-list extended VLAN11

permit ip 192.168.5.0 0.0.0.255 any

ip access-list standard ANY

permit any

vlan access-map WHATEVER 10

match ip address VLAN11

action drop log

! this is also logging what's dropped

exit

vlan access-map WHATEVER 20

match ip address ANY

action forward

exit

vlan filter WHATEVER vlan-list 1,10

I hope I have no syntax mistakes as I compose this from my head.

Let me know if it's working

Cheers,

Calin

462
Views
0
Helpful
1
Replies