Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

Vlan need not to communicate to one perticular Vlan

Hi,

I have a question on Vlan communications.

I have a scenario where in i have 5 Vlans ( Vlan 1,2,3,4,5) in my switch, and my requirment is that i don want the VLAN 3 and Vlan 4 to communicate to each other. where as all other vlans except Vlan3 should communicate to Vlan4 and vice versa  ....and all vlans except 4 should communicate to Vlan3 and vice-versa...

Please reply me with the logic and neccesary cammands.

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Blue

Re: Vlan need not to communicate to one perticular Vlan

azharuddininamdar wrote:

Hi Jon,

Thanks a ton for this info..

Can i implement the same using distribute list?

No, distribute lists are used primarily for filtering inbound or outbound routing updates. If you want to restrict traffic between vlans then acls are the way to go.

Jon

4 REPLIES
Hall of Fame Super Blue

Re: Vlan need not to communicate to one perticular Vlan

azharuddininamdar wrote:

Hi,

I have a question on Vlan communications.

I have a scenario where in i have 5 Vlans ( Vlan 1,2,3,4,5) in my switch, and my requirment is that i don want the VLAN 3 and Vlan 4 to communicate to each other. where as all other vlans except Vlan3 should communicate to Vlan4 and vice versa  ....and all vlans except 4 should communicate to Vlan3 and vice-versa...

Please reply me with the logic and neccesary cammands.

Thanks

vlan 3 = 192.168.5.0/24

vlan 4 = 192.168.6.0/24

access-list 101 deny ip 192.168.5.0 0.0.0.255 192.168.6.0 0.0.0.255

access-list 101 permit ip 192.168.5.0 0.0.0.255 any

access-list 102 deny ip 192.168.6.0 0.0.0.255 192.168.5.0 0.0.0.255

access-list 102 permit ip 192.168.6.0 0.0.0.255 any

int vlan 3

ip access-group 101 in

int vlan 4

ip access-group 102 in

Jon

New Member

Re: Vlan need not to communicate to one perticular Vlan

Hi Jon,

Thanks a ton for this info..

Can i implement the same using distribute list?

Hall of Fame Super Blue

Re: Vlan need not to communicate to one perticular Vlan

azharuddininamdar wrote:

Hi Jon,

Thanks a ton for this info..

Can i implement the same using distribute list?

No, distribute lists are used primarily for filtering inbound or outbound routing updates. If you want to restrict traffic between vlans then acls are the way to go.

Jon

New Member

Re: Vlan need not to communicate to one perticular Vlan

Got it Jon,

I was known to this, but needed to confirm..

thanks for resolving my Query...

170
Views
0
Helpful
4
Replies
CreatePlease to create content