Solved: How to block same vlan access in Cisco ASA - Cisco Community

1147

Views

0

Helpful

4

Replies

Hi,

I have a vlan (172.16.1.0/24) configure in Cisco ASA. How to block the same vlan access in Cisco ASA. Or it should be configure an ACL within the switch?

Example.

I want to block access from PC1 to PC2.

PC1(172.16.1.63) - SwitchA-gi01 - Cisco ASA - SwitchA-gi02 - PC2(172.16.1.50)

Please advice.

1 Accepted Solution

Accepted Solutions

The ACL has to be extended acl .

You can apply the acl on interface of the switch

Thnx

Dibu

View solution in original post

4 Replies 4

The 2 pcs are connected to the same switch on same vlan hence the traffic between the PC will not be coming to ASA . There is no logic in configuring policy on ASA

In order to restrict you can use ACL on switch

Thnx

Dibu

Hi Diburaj,

This should use standard or extended ACL?

The ACL has to be extended acl .

You can apply the acl on interface of the switch

Thnx

Dibu

Thanks Diburaj. Will try on that later.

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community

Review Cisco Networking for a $25 gift card