Hello @TvdR03
Regarding the different subnet on your PT:
ip access-list extended VLAN10_ACL
deny ip 192.168.10.0 0.0.0.255 192.168.20.0 0.0.0.255
deny ip 192.168.10.0 0.0.0.255 192.168.50.0 0.0.0.255
deny ip 192.168.10.0 0.0.0.255 host 192.168.100.100
permit ip any any
ip access-list extended VLAN20_ACL
deny ip 192.168.20.0 0.0.0.255 192.168.10.0 0.0.0.255
deny ip 192.168.20.0 0.0.0.255 192.168.50.0 0.0.0.255
deny ip 192.168.20.0 0.0.0.255 host 192.168.100.100
permit ip any any
Apply acl on sub-interfaces:
interface GigabitEthernet0/0/0.10
ip access-group VLAN10_ACL in
interface GigabitEthernet0/0/0.20
ip access-group VLAN20_ACL in
Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
