cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

554
Views
0
Helpful
1
Replies
m-mneimneh
Beginner

Controling traffic within the Guest vlan

Hi all,

  • Setup: lab envt that includes a Cisco ACS 5.3, a 2960 switch and a couple of host devices;
  • Scenario: host devices fail to authenticate on Cisco ACS, and are redirected to a Guest vlan/zone;
  • Objective: prevent host devices from seeing each other once in the guest zone.

How can this be achieved?

Thank you,

-Mohamad.

Is there a way for Cisco ACS to push/assign an isolated   private VLAN to the switch to prevent the 2 devices from talking to each  other?

1 REPLY 1
Jatin Katyal
Cisco Employee

I think this is what we can try;

Switch(config)# vlan 101
Switch(config-vlan)# private-vlan isolated

Where 101 is your guest vlan.

http://packetlife.net/blog/2010/aug/30/basic-private-vlan-configuration/

Regards,

Jatin

~Jatin
Content for Community-Ad