10-14-2005 11:29 AM - edited 03-03-2019 12:26 AM
Hi I am looking to create an Internet Only VLAN for my network. While on this VLAN the client should only be able to DHCP, Query DNS and surf the Internet. I have the VLAN created, and the client is able to DHCP/Query DNS. I have 2 4507 switches connected with one connected to a firewall. What should be my next steps?
10-14-2005 11:15 PM
Hello,
I assume the Internet connection is going through the firewall ? You could either create an access list on the VLAN interface, allowing only relevant Internet traffic to pass, or create a rule on the firewall, allowing only the Internet traffic to get through to the IP address space of the Internet VLAN.
Let me know if you need help with configuring this...
Regards,
GP
10-15-2005 05:07 PM
i would imagine someone with experience in pvlan would help out more than i will offer, but if you have a firewall that understands vlan or a firewall with an extra port then create a vlan with no routable vlan interface (just layer2) then make the gateway address be your firewall..
This should you out best
10-16-2005 03:34 PM
It does go through a firewall. I think I will have to go with an access list for the vlan. I don't want this vlan talking to the rest of the network, only going to the internet. I will play with an access list to see if I can get it working properly.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide