Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

vpn config challenges with svi


we have a remote access vpn with single pool say to

we have 10 svi on l3 switch.

on each svi we have created access-list so that each vlan should not communicate(ping etc) to each other.

Assume two  problem is if a user from outside network both will get two ip from same ip.

with both ip each user can communicate to each other.

is there any way to block with svi.

  • LAN Switching and Routing

vpn config challenges with svi


If you don't mind can you explain your question again?


New Member

vpn config challenges with svi

Hi Siddhartham

On switch We have applied access list on one svi (say vlan 10).so it should not communicate  to other vlan .from inside network  no vlan are able to communicate to vlan 10 that is fine

VPN is configured on router and he is of range to

Once the user connects to coporate vpn from outside world he will  get an ip say as from that pool ansd he is able to ping ,rdp ,telnet etc to all machine to all the vlan include vlan10.

If i need to block i should deny the ip under that svi so that it will not allow access to that vlan 10 right.

Re: vpn config challenges with svi

This question should be asked in the VPN section, but the VPN device, whatever it is, should dictate what is and isn't allowed to be accessed by the external users.

Sent from Cisco Technical Support iPad App