11-13-2024 07:32 AM
Hello colleagues,
I am NOT a Cisco-certified specialist but rather focused more on IT forensics and regular client/server technologies.
I have created a link using a routed port between an SX350X and a CBS350. The CBS350 has the subnet 10.10.10.0/24, and the SX350X has the network 192.168.1.0/24. There are two VLANs: 1 (SX350X) and 10 (CBS350). I initially tried to connect both switches using their SVIs, but it didn’t work since only access ports for the respective VLANs are configured on each switch. Therefore, I created a routed port on both sides using the transit network 192.168.100.0 and defined a static route to the other network on each.
Now, I would like to enable routing in only one direction (10.10.10.0/24 => 192.168.1.0/24), but not the other way around. When I define access lists based on IPs, routing logically stops working in both directions. During my research, I found out that it can be accomplished using the ESTABLISHED state, meaning it should only work from the side that initiates the connection. I have been struggling with the correct syntax for the access list for the past three weeks. Can anyone assist me with this? I would be very, very grateful!
11-14-2024 10:31 AM
On the GUI
11-14-2024 11:27 AM
Yes, now it works as desired. Joseph, thank you very much for your help! And once again, I have learned a small fraction more about the Cisco universe.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide