Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am trying to write an ACL that will block all outside traffic on a certain VLAN (VLAN10). However I want traffic on this VLAN10 to be able obtain a DHCP address and access a server on another VLAN (VLAN20). Below is what I have, but when testing,...
On a 4507R+E with dual 8L-E supervisor, I keep getting the error below. I tried to reload the supervisor but the error still shows. This is currently on the standby supervisor.
sh platform hardware interface all | b Superport68Superport68(Te4/1) ...
Currently I have 2 6509's connected via L3 HSRP and L2 port channel, that are being used as a core/distribution/access switch. I also have 6509's being used as L2 access switches and each connected back to the cores. The concern that I have is for ...
I came across this script to find ports that have not been used for 6 weeks or more. I can get it to work for anything up to 9 weeks or more. However I'm struggling to figure out how to modify this script to show double digit weeks or more.
For e...
I was wondering what the recommended procedures are on a SPAN session that is currently not being used. For example a SPAN session for a VLAN, when done troubleshooting, is it recommended to delete the SPAN or is it ok to leave it, in the event simi...
I got it working now. It was IPv6. I ran a WireShark trace to Google.com and notice that the source and destination where all IPv6. Our machines are dual stacked, but IPv6 is always an after thought. When I turned off IPv6 everything was allowed ...
So I applied the ACL to our VLAN using IN however HTTPS sites like google, yahoo, amazon, cnn, and microsoft still come through. I cleared my cache and tried different browsers, but so far not luck. Everything else seems to be working as intended. ...
Thanks to both of you. I kept the specific ports to get a visual of what type of traffic was actually being blocked. Once I see which traffic is blocked the most, I agree, I will remove the specified ports as the last deny covers them all.
Thanks @Edwin Portillo,Below is what I think I'll go with. I setup a small example in Packet Tracer and it seems to work as intended.!ip access-list extended VL10_NO_INTERNETremark ---------------------------------------remark Access VLAN 20 SERVERre...
