- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Web and Unmanaged
- >
- Re: Isolate VLAN - 1910 - 500
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-04-2016 03:04 PM
тАО04-04-2016 03:04 PM
Isolate VLAN - 1910 - 500
Hi.
I would like to know how I can isolate a specific vlan from the other vlans without using an ACL to deny the traffic?
Denying the traffic through an ACL works but I would like to do the inverse. Isolate the vlan 202 and only permit through ACL the UDP because the DHCP service and the traffic to the firewall.
The access switches are 1910 and the core 5500 HI.
Thanks in advance.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-04-2016 11:53 PM
тАО04-04-2016 11:53 PM
Re: Isolate VLAN - 1910 - 500
If VLAN202 has a L3 interface on the switches, you do need ACL on the L3 switch.
And for DHCP (relay) you need a L3 interface....
But if you move DHCP (relay) function to the firewall, you can make VLAN202 L2 only on the switches, giving you isolation without switch ACLs.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2016 04:11 AM
тАО04-05-2016 04:11 AM
Re: Isolate VLAN - 1910 - 500
All switches uses the DHCP relay function.
So, the best way to block the inbound traffic from vlan 202 to 1 is denying the traffic through an ACL?
Thanks in advance.