Re: SSH need to block in vlan gateway - Cisco Community

721

Views

0

Helpful

1

Replies

Hi ,

is there any way to block ssh in vlan gateway ..

for example .

vlan 101

ip address 172.18.1.1/24

vlan 102

ip address 172.18.2.1/24

i want to block ssh for vlan 102 gateway ip(172.18.2.1) address .

Please let me know .

1 Reply 1

You looking to block SSH from IP range (ip address 172.18.2.1/24) - then below ACL help you.

access-list 100 deny tcp any 172.18.2.0 0.0.0.255 eq 22

access-list 100 permit ip any any

Then on your layer 3 SVI under the vlan interface apply it in or outbound

Interface vlan 2

XXXXXXXXXXXXXXXXXX

ip access-group 100 in

ip access-group 100 out

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community