I have CISCO SG350-28 28 Ports Gigabit Managed Switch.
First of all let me explain what i have to configure...
I simply have to devide switch into 3 Parts (3 Group of Physical Ports).
Group A - Port GE1 to Port GE6
Group B - Port GE7 to Port GE12
Group C - Port GE13 to Port GE24
Conditions -
Devices in Group A must not ping from Group B, and Device in Group B must not ping from Group A.
Basically Group A and Group B must be Isolated.
And both the Group A and Group B must be ping from Group C.
All three Groups must be in same IP Range.
Example-
-Insert 2 devices of ip address 192.168.1.10 and 192.168.1.11 in Port Group A. i.e. in Port GE1 and GE2
-Insert 2 devices of ip address 192.168.1.20 and 192.167.1.21 in Port Group B. i.e in Port GE7 and GE8
-Insert my Laptop of ip address 192.168.1.93 in Port Group C. i.e. in Port GE13
Now my laptop must be able to ping all 4 devices however Device in Port Group A and port Group B must remain Isolate to each other.
We are doing this configuration in different brand's switches by using vpn.
Like this,
Assign Port 1-6 and 13-24 in VPN-A and
Assign Port 7-24 in VPN-B.
By doing this our purpose gets resolved.
How to do this explained configuration in cisco ?