Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
10
Helpful
4
Replies

ACL on SG300-52 Manageable Switch

Go to solution
it
Level 1
Level 1

‎01-31-2016 02:39 AM - edited ‎03-10-2019 01:06 PM

I need someone's advise regarding in configuration of ACL(Access List) in
SG300-52 smb switch.

The switch was configured to Layer 3 and has multiple vlans accessing the
internet and the server group. Also I made an interface vlan ip address so
that by dafault all vlan groups are routebale. And the internet connection is
comming from firewall by means of default route created from default vlan 1.

The problem is the Access List binding, wherein it is making the network slow
and for sometime it blocks the internet comming from the firewall.

My Access List is configured to Permit only Internet Access, Only one Website
access and Server VLAN while the rest are denied all.

ACL Sample:

192.168.0.254 -Interface VLAN IP of Default Route to Firewall(Internet
Connection)

192.168.10.0 - Network Address of intended users

192.168.20.0 - Network Address of Server

213.42.20.20 - ISP DNS Server

194.170.213.1 - Only Allowed Website Access

Deny ALL.

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Philip D'Ath
VIP Alumni
VIP Alumni
In response to it

‎01-31-2016 07:15 PM

What is the web site?

I'm going to guess it loads components off other web sites, and you are having to wait for it to time out.

View solution in original post

4 Replies 4

Go to solution
Philip D'Ath
VIP Alumni
VIP Alumni

‎01-31-2016 05:12 PM

To be clear, you enter the URL intot he web browser and hit return, and it takes a long time before the web site starts loading?

Or the web site starts loading in a reasonable amount of time, but loads very slowly.

0 Helpful

Go to solution
it
Level 1
Level 1
In response to Philip D'Ath

‎01-31-2016 07:12 PM

P.dath,  thank you for your reply.

Yes, the website starts loading for reasonable time but it loads very slowly. Also the route to the erp server vlan is sometimes disconnecting.

The users route to server is through interface vlan and DNS ip address users TCP\IP. 

Thanks.

 

 

0 Helpful

Go to solution
Philip D'Ath
VIP Alumni
VIP Alumni
In response to it

‎01-31-2016 07:15 PM

What is the web site?

I'm going to guess it loads components off other web sites, and you are having to wait for it to time out.

Go to solution
it
Level 1
Level 1
In response to Philip D'Ath

‎02-02-2016 05:01 AM

Yes that is true. Also I want to immediately to show the connection error in the webpage if users wants to browse in other websites. Becuase it keeps on loading the page even though it is denied already in ACL.

Is my ACL configuration is correct? What is the best priority arrangement do you suggest. Is it permit to interface vlan first or otherways?

0 Helpful
Customers Also Viewed These Support Documents