05-27-2009 01:40 AM - edited 03-06-2019 05:56 AM
Dear All,
How can i block a single IP with in a VLAN. this ip should not be able to access any other ips in the same vlan as well as other vlan in the network.
i have cisco WS-C3560G-48TS switch with me. please help me to do the same
Thanks
05-27-2009 02:16 AM
I think you can create an inbound access-list and apply it to the vlan.
access-list 101 deny ip host any
access-list 101 permit ip any any
I am assumming that you are using the switch as an L3 switch
05-27-2009 02:40 AM
Try looking into the Private VLAN feature.
The ACL method mentioned will not block trafic within the same VLAN.
HTH.
05-27-2009 02:43 AM
Hi
U need to use vlan-maps to achieve it.
Mahmood
05-27-2009 03:00 AM
As Ingolf mentionned, you need PVLAN to tale care of L2 blocking combined with an ACL for L3 blocking.
HTH
Sam
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
