I have three vlans: user, wireless, dmz. I want to prevent traffic from dmz to user and from dmz to wireless. I implemented these ACLs but it's not working. Traffic is still being allowed. Can you please let me know if I'm doing anything wrong?
ip access-list extended "dmz -> user" deny ip 10.0.0.0 0.0.0.255 10.0.1.0 0.0.0.255 ace-priority 1 exit ip access-list extended "dmz -> wireless" deny ip 10.0.0.0 0.0.0.255 10.0.2.0 0.0.0.255 ace-priority 1 exit
Solved! Go to Solution.