Buy or Renew
Buy or Renew
Welcome to the new Cisco Community. LEARN MORE about the updates and what is coming.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation

ACL not working

Go to solution
FabioLanza89974
Beginner
Beginner

‎02-15-2020 11:25 PM

Hi,

 

I have three vlans: user, wireless, dmz. I want to prevent traffic from dmz to user and from dmz to wireless. I implemented these ACLs but it's not working. Traffic is still being allowed. Can you please let me know if I'm doing anything wrong?

ip access-list extended "dmz -> user"
deny ip 10.0.0.0 0.0.0.255 10.0.1.0 0.0.0.255 ace-priority 1
exit
ip access-list extended "dmz -> wireless"
deny ip 10.0.0.0 0.0.0.255 10.0.2.0 0.0.0.255 ace-priority 1
exit

image.pngimage.png

 

Thanks,


Fabio

Labels:
0 Helpful
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
balaji.bandi
VIP Guru VIP Guru
VIP Guru
In response to FabioLanza89974

‎02-16-2020 12:57 AM

have you bind the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
7 REPLIES 7

Go to solution
Muhammad Awais Khan
Rising star
Rising star

‎02-15-2020 11:57 PM

Hi,

 

Did you apply it to interface at interface level command " Access-Group input dmz -> user  ? If so which interface you applied ?

0 Helpful

Go to solution
FabioLanza89974
Beginner
Beginner
In response to Muhammad Awais Khan

‎02-16-2020 12:46 AM - edited ‎02-16-2020 12:53 AM

I am not very skilled with the CLI so I did everything via the GUI. I don't think that I applied it at interface level. If you share the command with me to try out via CLI I could execute it. Thanks.

0 Helpful

Go to solution
Georg Pauwen
VIP Master VIP Master
VIP Master

‎02-16-2020 12:32 AM

Hello,

 

whar device is this GUI screenshot from, which router/switch model ? Somewhere in the GUI there should be a 'Save' and/or 'Apply' button, make sure you have that checked...

0 Helpful

Go to solution
FabioLanza89974
Beginner
Beginner
In response to Georg Pauwen

‎02-16-2020 12:47 AM

I did save. Device model is Small Business Cisco SG350-10MP.
0 Helpful

Go to solution
balaji.bandi
VIP Guru VIP Guru
VIP Guru
In response to FabioLanza89974

‎02-16-2020 12:57 AM

have you bind the ACL to VLAN ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
FabioLanza89974
Beginner
Beginner
In response to balaji.bandi

‎02-16-2020 01:45 AM

No, after binding it started working. Thanks.
0 Helpful

Go to solution
balaji.bandi
VIP Guru VIP Guru
VIP Guru
In response to FabioLanza89974

‎02-16-2020 01:52 AM

Glad all working as expected after binding ACL to VLAN. Cheers!

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents