08-12-2010 02:09 PM - edited 03-06-2019 12:27 PM
Hi,
I am not quite familiar with the concept of VLAN access-list. From what I cound understand, typical VACL configuration is like this:
vlan access-map Filter-VL7 10
action forward
match mac address AllowThose
!
vlan access-map Filter-VL7 20
action forward
match ip address 101
!
vlan access-map Filter-VL7 30
action drop
It seems that you define the VACL by accepting some traffic based on ACL and then you drop packets that are not match.
I would like to know if it is possible to restrain traffic like ICMP, and telnet to a specific IP address and allowing all other IP traffic that is not going to that specific address. Any example on how this could be done, if feasible, would be greatly appreciated.
Thanks
Solved! Go to Solution.
08-12-2010 02:33 PM
Hi Stephane,
Have a look at this blog. It has some examples too.
http://blog.ine.com/2009/08/10/vlan-access-control-lists-vacls-tiers-1/
HTH
Reza
08-12-2010 02:33 PM
Hi Stephane,
Have a look at this blog. It has some examples too.
http://blog.ine.com/2009/08/10/vlan-access-control-lists-vacls-tiers-1/
HTH
Reza
08-13-2010 01:51 PM
Hi,
That works perfectly.....
Thanks
Steph
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide