06-15-2007 06:30 AM - edited 03-03-2019 05:27 PM
we have 3 vlans 1.1,1.2 and 1.6 we need a solution like vlan 6(1.6) has to access all the users who are in vlan 1(1.1) and vlan2(1.2) and have to block vlan 1 and 2 to access vlan6 we already applied the access list and this is not working i also attached the configuration file help me to solve this issue
thanks in advance
06-15-2007 08:59 AM
If I understand correctly, you want:
o vlan 6 users to be able to access vlan 1 and vlan 2 users
o but vlan 1 and vlan 2 users can not access vlan 6 users
If the above is correct, you're not going to be able to achieve this with access lists. Think about the traffic path. It's a two-way street. For vlan 6 users to access vlan 1 and 2 users that implies that return traffic from vlan 1 and 2 users must be allowed to vlan 6.
Please let me know if I misunderstood your request!
Thanks, Robin.
06-15-2007 12:56 PM
Correct me if I'm wrong, but couldn't you control this with a reflexive list from VLAN 6 to VLAN 1 & 2? Something like, slap all traffic from VLAN 6 incoming into a list, then evaluate the reflexive list outgoing, deny everything else?
I have this setup for my 871 at home, works just fine to block traffic.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide