Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
807
Views
0
Helpful
12
Replies

Vlan issue

Sheik Mohamed
Beginner
Beginner

‎08-14-2015 12:05 AM - edited ‎03-08-2019 01:21 AM

Dear Supporters 

 

I have Cisco 3550 series core switch IOS (tm) C3550 Software (C3550-I5Q3L2-M) .

Already configured 3 vlans (Vlan 2 =192.168.2.0/24,  vlan 10=192.168.10.0/24 ; vlan=192.168.15.0/24)

We need to restrict the access in to particular vlan .example vlan 10 want to access other vlan 2 and vlan 15 but both vlan cannot communicate with vlan10 ??we need to be scure the vlan 10 

Vlan 10 >>>>>can access vlan 2 & Vlan 15

Vlan2 &Vlan 15 xxxxx cannot access vlan 10

is their any accesslist or commands available?? pls share with me the details??? 

 

Config:

version 12.1
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname xxxxxx
!
enable secret level 5 5 xxxxx
enable password xxxxxx
!
username admin password 0 xxxxxxx
ip subnet-zero
ip routing
ip name-server 193.188.97.209

ip name-server 8.8.8.8
!         
ip dhcp pool Vlan2
   network 192.168.2.0 255.255.255.0
   default-router 192.168.2.1 
   dns-server 192.168.100.254 
   lease 5
!
ip dhcp pool Vlan10
   network 192.168.10.0 255.255.255.0
   domain-name xxxx
   dns-server 192.168.100.254 
   default-router 192.168.10.1 
   lease 5
!
ip dhcp pool Vlan15
   network 192.168.15.0 255.255.255.0
   dns-server 192.168.100.254 
   default-router 192.168.15.1 
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
!         
!
interface FastEthernet0/1
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/2
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/3
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/4
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/5
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/6
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/7
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/8
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/9
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/10
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/11
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/12
 switchport access vlan 10
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/13
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/14
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/15
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/16
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/17
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/18
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/19
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!         
interface FastEthernet0/20
 switchport access vlan 2
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/21
 switchport access vlan 15
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/22
 switchport access vlan 15
 switchport mode access
 no ip address
 spanning-tree portfast
!
interface FastEthernet0/23
 switchport mode access
 no ip address
 spanning-tree portfast
!         
interface FastEthernet0/24
 switchport trunk encapsulation dot1q
 switchport mode access
 no ip address
!
interface GigabitEthernet0/1
 no ip address
!
interface GigabitEthernet0/2
 no ip address
!
interface Vlan1
 description WAN Connection to Firewall 
 ip address 192.168.100.1 255.255.255.0
!
interface Vlan2
 description School Vlan
 ip address 192.168.2.1 255.255.255.0
 !
interface Vlan10
 description Accounts
 ip address 192.168.10.1 255.255.255.0
!
interface Vlan15
 description Special Purpose
 ip address 192.168.15.1 255.255.255.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.100.254
ip http server
!
!
!
line con 0
line vty 0 4
 password xxxxx
 login local
line vty 5 14
 password xxxxx
 login local
line vty 15
 login
!
end

 

 

 

Thanks and regards

Sheik Mohamed Shahul

 

 

Labels:
0 Helpful
12 Replies 12

Jon Marshall
Hall of Fame
Hall of Fame