If I create an ACL on VLAN1 that allows traffic to destination IP:PORT on VLAN 2, will I be able to open a TCP connection to it? Will returning packets from the destination IP:PORT automatically be allowed back into VLAN1?
Hi Kurian, on small business switch, the ACL applies as ingress only. So if you have an ACL applied to VLAN 1 that is permit to VLAN 2 there will not be any drop traffic.
I see what is your point that the traffic return from VLAN 2 back in to VLAN 1 therefore should be dropped, that is not the case - otherwise it would make the ACL nearly impossible to use with any efficiencies.
Please mark answered for helpful posts
This is true if I only have ACLs on VLAN 1, but I will also have different ACLs on VLAN 2. Then ingress filtering will be applied on VLAN 2 and the response packets from VLAN 1 connections will not be allowed back unless I create matching rules on VLAN 2 right?
Sx550X, Sx350X, Sx250: PSE will Supply Power to Catalyst PSE Ports
May 31, 2016
June 5, 2017
Configure Remote Network Monitoring (RMON) Events Control Settings on a Switch through the Command Line Interface (CLI)
Remote Network Monitoring (RMON) was developed by the Internet Engineering Task Force (IETF) to support...