Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
299
Views
0
Helpful
1
Replies

help with vlan acl

Go to solution
adimnewtemp
Level 1
Level 1

‎04-07-2016 12:45 AM - edited ‎03-08-2019 05:16 AM

Hi all,

I' like someone to confirm if my conception about configuring and applying VACL is correct.

Suppose on SW-1 which connects through a trunk to SW-2 there are several access ports in different vlans.

Also in SW-2 there are except the trunk port towards SW-1 other ports that connect to servers belonging to several vlans or have a trunk port toward SW-2.

I want to ensure that traffic inside vlan 100 (in which belong some ports of SW-1 and SW-2) is originated only from subnet 192.168.16.0/24

#access-list 1 permit 192.168.16.0.  0 0.0.255

#vlan access-map vlan100 10

#match ip address 1

#action forward

#vlan access-map vlan100 20

#action drop

#vlan filter vlan100 vlan-list 100

I suppose that these commands should be applied to both switches.

Is that correct or do i miss something?

thanks in advance

Athanasios

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
dukenuk96
Level 3
Level 3

‎04-07-2016 04:26 AM

Hi

VACLs need to be apllied on both switches, sure. Configuration looks correct.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
dukenuk96
Level 3
Level 3

‎04-07-2016 04:26 AM

Hi

VACLs need to be apllied on both switches, sure. Configuration looks correct.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card