LAN Routing
Showing results for 
Search instead for 
Do you mean 

5406 access list VLAN

Highlighted
Contributor

5406 access list VLAN

Hi

 

I have a Student VLAN and an IT Services VLAN

 

I wish to be able to TCP from IT to student, but do not wish to be able to TCP from Student to IT Services

 

I have tried using

 

access-list 101 permit source destination established

 

but this allows tcp in both directions, unless I have the syntax wrong or have missed something.

 

do I need to add things like gt 1023 or ACK,RST

 

regards