https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002310#M132395 <P>Hi,</P><P>&nbsp;</P><P>The challenge here is how to enforce a security rule on data when data is traversing within the same switch if it is in same Vlan. If you have certain use case where you want to control the communication within the same vlans, then you can take advantage of Private VLAN concept.</P> Sat, 21 Dec 2019 13:34:46 GMT Muhammad Awais Khan 2019-12-21T13:34:46Z https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002307#M132387 <P>Hi Guys,</P><P>Just want to check with you if it is possible to block east-west traffic in FTD? Those endpoints which are within the same VLAN or network.</P><P>Thanks</P> Sat, 21 Dec 2019 13:21:51 GMT https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002307#M132387 fatalXerror 2019-12-21T13:21:51Z https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002310#M132395 <P>Hi,</P><P>&nbsp;</P><P>The challenge here is how to enforce a security rule on data when data is traversing within the same switch if it is in same Vlan. If you have certain use case where you want to control the communication within the same vlans, then you can take advantage of Private VLAN concept.</P> Sat, 21 Dec 2019 13:34:46 GMT https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002310#M132395 Muhammad Awais Khan 2019-12-21T13:34:46Z https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002316#M132401 Hi,<BR />No that's not really possible to block traffic within the same VLAN with FTD. As already mentioned, you could use Private VLANs or alternatively you could use VLAN ACLs (VACL) or TrustSec, this is dependant on feature support in your switches.<BR /><BR />HTH Sat, 21 Dec 2019 13:46:21 GMT https://community.cisco.com/t5/network-security/east-west-traffic-for-ftd/m-p/4002316#M132401 Rob Ingram 2019-12-21T13:46:21Z