Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

VLAN lockdown

I would like to lockdown our seperate vlans. Right now any vlan can ping any vlan and any host within... so obviously this is not a regular vlan configuration.

thanks.

2 REPLIES

Re: VLAN lockdown

Hi,

Each vlan has its own interface vlan at the core switch. Right? If yes,They can talk to each other via their gateway(int vlan). If you want to block talking between them,then you may think about ACL.

HTH,

Toshi

Community Member

Re: VLAN lockdown

One way is through ACLs, the other way, if you are using a L3 capable switch, is to not create a SVI for the seperate VLans. I have a guest network vlan that I have set up that way. You will need to handle the routing at your gateway but it works well for me.

459
Views
0
Helpful
2
Replies
CreatePlease to create content