Hello,
I have been reading up on the VACL and ACL but I am little confused on how to properly implement it. Basically, I have a VLAN setup with 10.1.100.0/18 which I am using to setup the Local LAN network, but I do not want it to be accessible or seen by the regular network traffic itself at the router and the switches.
So I been trying to figure out how to properly implement it so that only 2 IPs from regular Network can access the internal LAN itself directly and block everything else to have it hidden. Since as it is, I can ping or ssh it from regular IP address, and I consider that a security risk, itself, even it is on separate VLAN itself, but using same router for managing all the network.
So anyone able to give little helpful guide on properly implementing this so I can use it as template and to get further understanding how it is done so I can devise the proper security model for the internet networks?