Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
715
Views
5
Helpful
2
Replies

Inter Vlan communication without Firewall

Go to solution
Asfandyar70754
Level 1
Level 1

‎03-07-2022 10:03 PM

Hey guys,

Hope you are doing well.

So I have been mostly doing network security in my career and never really got a chance to do a campus Lan/switching project and recently I thought to create a campus lan on lab, so most of my concepts got refreshed. 

But I got a bit confused in inter vlan communication, I had a concept if you want to inter vlan communication you will have to explicitly configure ACL on firewall/L3 device, but right now I build a lab(3 Tier Architecture) without a Firewall, and I configured 2 SVIs10.0.0.1 ,20.0.0.1 on my core Switch. So I had couple of PCs on Access Sw in their seperate vlans respectively and to my surprise they were able to ping each other.

Can you guys explain it a bit.

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎03-07-2022 11:48 PM

Yes, your understanding is correct, Layer 3 Switch  (not a Firewall) as soon as you enable ip routing, the networks in the Layer3 switch able to communicate with each other since they are aware of the networks in the same routing table of Layer 3 switch.

 

If you like to restrict between Inter-VLAN then you need to add ACL to prevent access to each other.

 

Firewall different - since default FW nature os deny any (until it was mention as a policy to allow each other)

 

make sense?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

2 Replies 2

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎03-07-2022 11:48 PM

Yes, your understanding is correct, Layer 3 Switch  (not a Firewall) as soon as you enable ip routing, the networks in the Layer3 switch able to communicate with each other since they are aware of the networks in the same routing table of Layer 3 switch.

 

If you like to restrict between Inter-VLAN then you need to add ACL to prevent access to each other.

 

Firewall different - since default FW nature os deny any (until it was mention as a policy to allow each other)

 

make sense?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
Asfandyar70754
Level 1
Level 1
In response to balaji.bandi

‎03-07-2022 11:52 PM

Absolutely Balaji, thanks a lot.

Got it

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card