Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

Blocking Protocols

Is there a way to block telnet/ssh/icmp/pop3 on all host for a specific VLAN.

Example : We have 10 VLANS configured on the backbone switch and on one VLAN we would like to block traffic in/out telnet/ssh/icmp/pop3

2 REPLIES
New Member

Re: Blocking Protocols

Apply an acl on interface Vlan10..

Config example:

!

interface Vlan10

ip access-group 101 in

ip access-group 101 out

!

access-list 101 deny tcp any any eq telnet

access-list 101 deny tcp any any eq 22

access-list 101 deny tcp any any eq pop3

access-list 101 deny icmp any any

!

Regards,

Raul

(Please rate helpful posts)

Hall of Fame Super Silver

Re: Blocking Protocols

hello Raul,

i would add

access-list 101 permit any any

at the end or everything will be blocked !

Regards

Giuseppe

91
Views
4
Helpful
2
Replies
CreatePlease to create content