03-31-2019 11:44 AM
Hi, is a access list needed to be implemented in the router for this case?. Guest Network VLAN 20 must be separated from the rest of the VLANS.
Thanks a lot, I've attached the file below
03-31-2019 12:39 PM
Dear,
yes, you must configure an ACL on guest interface.
Basically you can deny all network that are defined in RFC 1918 and permit all the rest. Obviously you should assign an external DNS server to guest clients.
Hope to be helpfully
03-31-2019 04:54 PM
an for tge reply, I've already
Thanks for the reply, I've already solved the issue by implementing acl deny list on the sub-interface of vlan 20
T
03-31-2019 05:27 PM
Hi @Mohax ,
It is always a pleasure to help. Congratulations on your achievement.
If you have other questions, just post it in the community.
Regards
03-31-2019 01:23 PM
Hello
Cannot view the PT file however I am assuming the router is performing the inter-vlan routing (router on a stick scenario)
in that case you could just add a Routed ACL on the sub-interface for the guest vlan to deny the other vlans access or you can just simply put that guest vlan into is own VRF
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide