Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

vpn config challenges with svi

Hi

we have a remote access vpn with single pool say 10.1.1.1 to 10.1.1.254

we have 10 svi on l3 switch.

on each svi we have created access-list so that each vlan should not communicate(ping etc) to each other.

Assume two  problem is if a user from outside network both will get two ip from same ip.

with both ip each user can communicate to each other.

is there any way to block with svi.

  • LAN Switching and Routing
3 REPLIES
Silver

vpn config challenges with svi

Prashant,

If you don't mind can you explain your question again?

Siddhartha

Siddhartha
New Member

vpn config challenges with svi

Hi Siddhartham

On switch We have applied access list on one svi (say vlan 10).so it should not communicate  to other vlan .from inside network  no vlan are able to communicate to vlan 10 that is fine

VPN is configured on router and he is of range 10.1.1.1 to 10.1.1.254.

Once the user connects to coporate vpn from outside world he will  get an ip say as 10.1.1.2 from that pool ansd he is able to ping ,rdp ,telnet etc to all machine to all the vlan include vlan10.

If i need to block i should deny the ip 10.1.1.1/24 under that svi so that it will not allow access to that vlan 10 right.

Re: vpn config challenges with svi

This question should be asked in the VPN section, but the VPN device, whatever it is, should dictate what is and isn't allowed to be accessed by the external users.

Sent from Cisco Technical Support iPad App

205
Views
0
Helpful
3
Replies