Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
477
Views
0
Helpful
2
Replies

VALS, vlan acces list

power.srvi
Level 1
Level 1

‎12-12-2011 09:53 AM - edited ‎03-07-2019 03:51 AM

hi all,

On my catalyst  3750; im planning to make a very particular acess list between the server vlan and client vlan,

what i need to do is the following :

1 allow acces in one way, from the server vlan to user vlan  and on a specific ports ( backup agent, anti-virus agent, snmp)

2 the user vlan can't acces to the server vlan but can acces to the internet

3 the servers vlan can acces to the internet

how can i do this (exemple plz)

regards

Labels:
0 Helpful
2 Replies 2

cadet alain
VIP Alumni
VIP Alumni

‎12-12-2011 11:18 AM

Hi,

IP communication is bidirectional so you can't  do both 1 and 2 points you wish to achieve.

You'll have to permit return traffic from user to server in response to server-user communication.

You can achieve this using ACL on VLAN interfaces.

But  what is the goal of only permitting traffic from server to user and return traffic as the intial traffic is always from the client to the server?

Regards.

Alain

Don't forget to rate helpful posts.
0 Helpful

power.srvi
Level 1
Level 1
In response to cadet alain

‎12-12-2011 11:51 AM

hi,

i explain, i want that the traffic can be only initiated by the server vlan

for example, a backup server need to contact a machine on the backup client, this kind of acl are well apreciated for the security.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card