10-30-2003 07:02 AM - edited 03-02-2019 11:21 AM
We have a network that is VLANed out per building. I have a group of computers that is going to be running TCP/IP and NetBEUI. I would like to isolate these computers on their own VLAN, so as to control broadcasts and such. Would it be necessary to go further with this, ie creating access lists?
Bill E.
10-30-2003 09:01 AM
If NetBEUI Broadcasts are the main concern, then simply putting the hosts in their own VLAN is sufficient.
NetBEUI is nonroutable, so the broadcasts will be contained within the VLAN/subnet.
10-30-2003 06:16 PM
Whether or not you need to go further than VLANs depends on what the security requirements are. If the requirement is that the two VLANs can't talk to each other at all or can only do so in a limited fashion, then you'll need access lists to filter traffic between them. The only traffic VLANs in of themselves will stop are broadcasts/multicasts, or unroutable protocols (as mentioned).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide