LAN Routing
cancel
Showing results for 
Search instead for 
Did you mean: 

VLAN ACL on HP Aaruba 2920

deepakkhw
Occasional Contributor

VLAN ACL on HP Aaruba 2920

Hi Friends,

I have an issue with my VLAN ACL on HP Aruba 2920-24G switch.  My Switch configuration as 

 

hostname "XXX-SW01"
module 1 type j9726a
trunk 23-24 trk1 lacp
trunk 21-22 trk2 lacp
ip access-list standard "1"
10 deny 192.168.195.0 0.0.0.255 log
11 deny 10.10.10.0 0.0.0.255 log
20 permit 0.0.0.0 255.255.255.255
exit
ip route 0.0.0.0 0.0.0.0 10.10.11.2
ip routing
snmp-server community "public" unrestricted
oobm
ip address dhcp-bootp
exit
vlan 1
name "DEFAULT_VLAN"
no untagged 1,19,Trk1
untagged 2-18,20,A1-A2,B1-B2,Trk2
ip address dhcp-bootp
exit
vlan 2
name "Server"
untagged 19
ip address 10.10.10.30 255.255.255.224
exit
vlan 3
name "Server-Heartbeat"
no ip address
exit
vlan 4
name "LAN"
tagged Trk2
ip address 192.168.195.254 255.255.255.128
exit
vlan 5
name "WLAN"
tagged Trk2
no ip address

vlan 10
name "GUEST"
untagged 1
tagged Trk2
ip access-group "1" vlan
ip address 10.10.20.126 255.255.255.128
exit
vlan 11
name "Etherchannel"
untagged Trk1
ip address 10.10.11.2 255.255.255.252
exit
spanning-tree
spanning-tree Trk1 priority 4
spanning-tree Trk2 priority 4
spanning-tree vlan 1 priority 9
spanning-tree vlan 2 priority 9
spanning-tree vlan 3 priority 9
spanning-tree vlan 4 priority 9
spanning-tree vlan 5 priority 9
spanning-tree vlan 10 priority 9
spanning-tree vlan 11 priority 9
spanning-tree priority 7

 

Now my requirement:

My Guest VLAN 10 (Guest) can not communicate with VLAN2, VLAN3, VLAN4, VLAN5. It will only communicate with VLAN 11.

Please share guide How I apply the ACL?

Thanks,
Deepak Kumar