cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
360
Views
0
Helpful
4
Replies
Beginner

Guest VLAN block access to other VLANS

Hi, is a access list needed to be implemented in the router for this case?. Guest Network VLAN 20 must be separated from the rest of the VLANS. 

 

Thanks a lot, I've attached the file below

 

4 REPLIES 4
Highlighted
Beginner

Re: Guest VLAN block access to other VLANS

Dear,

 

yes, you must configure an ACL on guest interface.

Basically you can deny all network that are defined in RFC 1918 and permit all the rest. Obviously you should assign an external DNS server to guest clients.

 

Hope to be helpfully 

 

Beginner

Re: Guest VLAN block access to other VLANS

an for tge reply, I've already

Thanks for the reply, I've already solved the issue by implementing acl deny list on the sub-interface of vlan 20

T

Advocate

Re: Guest VLAN block access to other VLANS

Hi @Mohax ,

 

It is always a pleasure to help. Congratulations on your achievement.

If you have other questions, just post it in the community.

 

Regards

VIP Advisor

Re: Guest VLAN block access to other VLANS

Hello

Cannot view the PT file however I am assuming the router is performing the inter-vlan routing (router on a stick scenario)

in that case you could just add a Routed ACL on the sub-interface for the guest vlan to deny the other vlans access or you can just simply put that guest vlan into is own VRF



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future
CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards