Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1088
Views
5
Helpful
3
Replies

How to create access list to stop the 10.x.x.x from communicating with the 172 Network

acheak9975
Level 1
Level 1

‎08-31-2020 02:16 PM

Hi I have a router that is connected to two networks the 10 network is where Internet comes in. The 172 network is my local lan. How do I create an access list to stop the 10 network from communicating with the 172 network?  The 10 network cannot see the 172 network but 172 can see 10. I still need Internet access through the 10 network. Just want to stop all local traffic from crossing. I really need to figure this out as soon as possible. Thank you.

Labels:
0 Helpful
3 Replies 3

pieterh
VIP
VIP

‎09-01-2020 02:01 AM

how-to configure depends on brand/model os version

please specify more detail

look at this document: IOS Zone Based Firewall Step-by-Step Basic Configuration

acheak9975
Level 1
Level 1
In response to pieterh

‎09-01-2020 04:49 AM

I am using a 2900 series router 2960 switch both are on iOS 15

0 Helpful

Georg Pauwen
VIP
VIP
In response to acheak9975

‎09-01-2020 06:00 AM

Hello,

 

the Zone Based Firewall mentioned by 'pieterh' is the right solution. Check if you have any 'zone' config commands:

 

2900#conf t

2900(config)#zone ?

 

If that is the case, post your running configuration, so we can help with the details.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card