08-14-2017 05:35 PM - edited 03-12-2019 02:49 AM
Hi,
I have a vlan (172.16.1.0/24) configure in Cisco ASA. How to block the same vlan access in Cisco ASA. Or it should be configure an ACL within the switch?
Example.
I want to block access from PC1 to PC2.
PC1(172.16.1.63) - SwitchA-gi01 - Cisco ASA - SwitchA-gi02 - PC2(172.16.1.50)
Please advice.
Solved! Go to Solution.
08-14-2017 06:03 PM
The ACL has to be extended acl .
You can apply the acl on interface of the switch
Thnx
Dibu
08-14-2017 05:50 PM
The 2 pcs are connected to the same switch on same vlan hence the traffic between the PC will not be coming to ASA . There is no logic in configuring policy on ASA
In order to restrict you can use ACL on switch
Thnx
Dibu
08-14-2017 05:52 PM
Hi Diburaj,
This should use standard or extended ACL?
08-14-2017 06:03 PM
The ACL has to be extended acl .
You can apply the acl on interface of the switch
Thnx
Dibu
08-14-2017 06:05 PM
Thanks Diburaj. Will try on that later.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: