08-20-2023 10:07 PM
Hi,
we have a collapse architecture, wherein our core sw 9407 acting as a layer-2 and the gateway is our firewall.
we have a requirement to control same vlan traffic to block, is it possible to create a layer-2 ACL or something in the Access layer switches which is catalyst 9200.
Please assist if anybody has any document to achieve it.
08-21-2023 12:18 AM - edited 08-21-2023 12:18 AM
we have a requirement to control same vlan traffic to block
May be MAC ACL help you here (just guess) but you need to explain why you looking to do this ? what is the use case ?
08-21-2023 01:45 AM
@balaji.bandi the requirement is to prevent same vlan connection. Lets say from vlan 10 to vlan 10 rdp connection.
Not a full fledged requirement, since we have a NAC solution sitting in the DC and Netflow is configured on Core sw to send the information for NAC taking configured actions. Since information of certain hosts connected to the same switches will not reach the NAC via netflow, we are having difficulties in achieving this use case.
08-21-2023 12:58 AM
I send you message check it
08-21-2023 01:45 AM
Thanks @MHM Cisco World i checked can u pls share any example configurations.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide