Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
977
Views
0
Helpful
1
Replies

Write access list to isolate subnets

Orinococog
Level 1
Level 1

‎06-10-2011 05:05 AM - edited ‎03-07-2019 12:44 AM

I have four subnets and would like to isolate two subnets from accessing servers, how can I write an access-liost to attain that

tks

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎06-10-2011 05:11 AM

server network - 192.168.5.0 255.255.255.0

subnet1 = 192.168.6.0 255.255.255.0

subnet2 = 192.168.7.0 255.255.255.0

access-list 101 deny ip 192.168.6.0 0.0.0.255 192.168.5.0 0.0.0.255

access-list 101 permit ip 192.168.6.0 0.0.0.255 any

access-list 102 deny ip 192.168.7.0 0.0.0.255 192.168.5.0 0.0.0.255

access-list 102 permit ip 192.168.7.0 0.0.0.255 any

then you need to apply the acls to the right interfaces. Assuming this is a L3 switch and subnet1 = vlan 10 and subnet2 = vlan 11

int vlan 10

ip address x.x.x.x

ip access-group 101 in

int vlan 11

ip address x.x.x.x

ip access-group 102 in

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card