Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1413
Views
5
Helpful
2
Replies

svi vlan acl question

Go to solution
unique3ziz
Level 1
Level 1

‎01-18-2022 05:05 AM

hello guys

 

i have a core switch that has 2 vlans configured as svi

vlan 101 for ip cameras

vlan 10 which is data vlan

 

now i want to create an ACL to block access from vlan 10 to vlan 101, and only allow host 192.168.10.7 to access the cameras vlan. however, im finding some difficulties regarding where to put the acl-group. when i try to put it as inbound in vlan 101 it doesn't work.

 

i hope someone can explain to me what is the best approach in the scenario.

thank you,

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎01-18-2022 05:51 AM

You need to configure this on VLAN SVI - depends on which direction the traffic going - so you will decide IN or OUT

 

IN - inbound means traffic coming to the SVI ie. traffic from clients in that vlan.

OUT - traffic going from the SVI ie. traffic going to clients in that vlan.

 

Some example explained here :

 

https://community.cisco.com/t5/switching/pls-explain-svi-acl-source-and-destination-direction/td-p/2365577

 

Still not working - post the configuration here to understand the issue.,

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

2 Replies 2

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎01-18-2022 05:51 AM

You need to configure this on VLAN SVI - depends on which direction the traffic going - so you will decide IN or OUT

 

IN - inbound means traffic coming to the SVI ie. traffic from clients in that vlan.

OUT - traffic going from the SVI ie. traffic going to clients in that vlan.

 

Some example explained here :

 

https://community.cisco.com/t5/switching/pls-explain-svi-acl-source-and-destination-direction/td-p/2365577

 

Still not working - post the configuration here to understand the issue.,

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
unique3ziz
Level 1
Level 1
In response to balaji.bandi

‎01-18-2022 08:37 AM

Thank you. Good explanation

0 Helpful
Customers Also Viewed These Support Documents