- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- ACL's over to subnet's help needed!!!!!
-
-
Categories
- Topics
- Hybrid IT with Cloud
- Mobile & IoT
- IT for Data & Analytics
- Transformation
- Strategy and Technology
- Products
- Cloud
- Integrated Systems
- Networking
- Servers and Operating Systems
- Services
- Storage
- Company
- Events
- Partner Solutions and Certifications
- Welcome
- Welcome
- Announcements
- Tips and Tricks
- Feedback
-
Blogs
- Alliances
- Around the Storage Block
- Behind the scenes @ Labs
- Converged Data Center Infrastructure
- Digital Transformation
- Grounded in the Cloud
- HPE Careers
- HPE Storage Tech Insiders
- Infrastructure Insights
- Inspiring Progress
- Internet of Things (IoT)
- My Learning Certification
- Networking
- OEM Solutions
- Servers: The Right Compute
- Telecom IQ
- Transforming IT
-
Quick Links
- Community
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Contact
- Email us
- Tell us what you think
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Enterprise.nxt
- Marketplace
- Aruba Airheads Community
-
Categories
-
Forums
-
Blogs
-
InformationEnglish
ACL's over to subnet's help needed!!!!!
SOLVED- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 12:46 AM
08-04-2010 12:46 AM
I have been working with Procuvre for a couple of years now doing basic network stuff, but I want to setup ACL's for a new wireless project I have on.
I am still reading about ACL's and how they work but thought I post to see if some can lend a hand.
I have a 8212 on one site with a Cisco 4506 on the other and there is a Layer 3 interface setup between the two.
Both switches have VLAN 323 allocated to them for the wireless.
They have different subnets but want them to see each other but not the rest of the network.
Subnet1 172.26.32.0/20
Subnet2 172.26.48.0/20
Can any one help me set this up or give me some pointers.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 01:02 AM
08-04-2010 01:02 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
access-list 101 permit ip host (type ip) host (type ip)
access-list 101 deny any any
Regards, Steffen.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 01:14 AM
08-04-2010 01:14 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
I have two Core switches on two sites.
Site 1,
8212 - VLAN 323
Subnet 172.26.32.0/20
Layer 3 routed connection between sites.
Site 2
Cisco 4506 - VLAN 323
Subnet 172.26.48.0/20
Does that help?
Luke
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 02:03 AM
08-04-2010 02:03 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
You want the Core switches to be able to communicate with each other, but not the clients on the subnets - it that understood correct?
If so..
Why do you only want to Cores switches to communicate with each other
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 02:05 AM
08-04-2010 02:05 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 02:55 AM
08-04-2010 02:55 AM
SolutionOn the router or layer 3 switch that are holding the subnet 172.26.32.0/20 I would do the following:
access-list 101 permit ip 172.26.32.0 0.0.15.255 172.26.48.0 0.0.15.255
access-list 101 deny ip any any (implicit)
and for the 172.26.48.0/20 subnet
access-list 101 permit ip 172.26.48.0 0.0.15.255 172.26.32.0 0.0.15.255
access-list 101 deny ip any any (implicit)
And the put the access-list on the interface on the wireless LAN interface i Outbound direction. It think It will work. Then the subnet is only allow to communication in Outbound direction if the communication is directed to the other wireless subnet.
regards.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 02:57 AM
08-04-2010 02:57 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-04-2010 02:58 AM
08-04-2010 02:58 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-05-2010 02:39 AM
08-05-2010 02:39 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
Luke
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
08-05-2010 02:40 AM
08-05-2010 02:40 AM
Re: ACL's over to subnet's help needed!!!!!
Re: ACL's over to subnet's help needed!!!!!
ip access-list extended "100"
remark "For Student Net Restictions"
permit ip 172.26.48.0 0.0.15.255 172.26.32.0 0.0.15.255
permit ip 172.26.48.0 0.0.15.255 172.26.48.0 0.0.15.255
deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit
ip access-list extended "100"
remark "For Students Net Restictions"
permit ip 172.26.32.0 0.0.15.255 172.26.48.0 0.0.15.255
permit ip 172.26.32.0 0.0.15.255 172.26.32.0 0.0.15.255
deny ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit
Between two switches.
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2018 Hewlett Packard Enterprise Development LP