Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1502
Views
0
Helpful
6
Replies

PC to PC blocking (in same VLAN) in Cisco C2960X switch

preetpeethambaran
Level 1
Level 1

‎07-10-2017 12:29 PM - edited ‎03-05-2019 08:49 AM

Hi,

I need to block PC to PC connectivity in the same vlan in Cisco C2960X series switch. Is there any way to block intra Vlan traffic in 2960X series switches, because as per my knowledge Private VLAN is not supported in this switches models.

Labels:
0 Helpful
6 Replies 6

Julio E. Moisa
VIP
VIP

‎07-10-2017 01:08 PM

Hi

The only thing on mind is using ACL on the access port, I have never made that but it could work.  The ports working as layer 2 can be configured to have an ACL in.

Hope it is useful.

:-)




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<
0 Helpful

preetpeethambaran
Level 1
Level 1
In response to Julio E. Moisa

‎07-16-2017 12:08 AM

Hi,

switchport protected worked, but after applying switchport protected, Data and Voice traffic got disconnected between Client 2 Client PC.

Is there any way to block only data traffic between PC to PC and  allow voice traffic.

0 Helpful

paul driver
VIP
VIP
In response to preetpeethambaran

‎07-16-2017 02:55 AM

Hello

That is correct it will block all communication with on between host that have this feature applied

Just prohibiting specific to data traffic would involve access-list (racal) on the l3 switch routed interface of the vlan this I believe already suggested by Julio  in some degree

res

paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Predrag Jovic
Level 3
Level 3
In response to preetpeethambaran

‎07-16-2017 05:37 AM

If VLAN maps are supported, that would, most likely, be the best way to do implement blocking inter VLAN traffic.

VLAN Map Configuration Guidelines

0 Helpful

paul driver
VIP
VIP

‎07-10-2017 03:33 PM

Hello

PC to PC connectivity in the same vlan

Host 1- 2
int x/x
Switchport protected

This will negate communication between the hosts in the same vlan

res

Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Predrag Jovic
Level 3
Level 3

‎07-13-2017 11:32 AM

Depending on feature set VLAN maps may be supported (not supported on devices with LAN base feature set). If supported, it would be the most flexible way to control inter VLAN traffic.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card