Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
876
Views
0
Helpful
5
Replies

ACL on SG500

Dav1787
Level 1
Level 1

‎06-23-2020 01:20 PM - edited ‎06-23-2020 01:20 PM

How do I get an ACL on an sg500 to deny all traffic from my 192.168.1.0/24 subnet to my CCTV subnet 192.168.20.0/24 apart from 1 host IP  192.168.1.8

 

Use to catalyst switches in which ACLs seemed more logical 

Labels:
Preview file
185 KB
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎06-23-2020 01:57 PM - edited ‎06-23-2020 02:50 PM

You need to bind that ACL to Interface to take effective, example :

 

https://www.cisco.com/c/en/us/support/docs/smb/switches/cisco-small-business-500-series-stackable-managed-switches/smb2674-add-access-control-list-acl-to-interface-binding-on-sx500-se.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Dav1787
Level 1
Level 1
In response to balaji.bandi

‎06-23-2020 02:13 PM

why do it on a port not a vlan?
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Dav1787

‎06-23-2020 02:50 PM

You can bind the ACL to VLAN Interface i mean.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Dav1787
Level 1
Level 1
In response to balaji.bandi

‎06-23-2020 02:51 PM

thats what im trying to do but its not working and I need help with it
0 Helpful

Sujoy Paria
Cisco Employee
Cisco Employee

‎06-30-2020 04:28 AM - edited ‎06-30-2020 04:30 AM

Hi,

First, please try to allow the traffic for 192.168.1.8 host towards CCTV IP subnet (192.168.20.0 /24) …

Source: 192.168.1.8   0.0.0.0

Destination: 192.168.20.0   0.0.0.255

Then deny the traffic for 192.168.1.0 /24 IP subnet towards CCTV IP subnet (192.168.20.0 /24) …

Source: 192.168.1.0   0.0.0.255

Destination: 192.168.20.0   0.0.0.255

 

After that map the ACL to the switch port / VLAN accordingly.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents