- Community Home
- >
- Networking
- >
- Legacy
- >
- Switches, Hubs, Modems
- >
- Stop certain VLANs from communicating with other V...
Switches, Hubs, and Modems
1753773
Members
5866
Online
108799
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-29-2011 06:37 AM
тАО05-29-2011 06:37 AM
Stop certain VLANs from communicating with other VLANs
Hi all,
i am going to implement E8200ZL core switch and 2610,2810 edge switch with around 15 VLANs.i want to restrict some of the vlans should not communicate with each other, eg. Server Vlan should be accessible for all vlans. Admin vlan can communicate with around 8 vlans.so on i think this can be achieve by ACLs.
What is the preferred way to stop certain VLANs from communicating with other VLANs once IP routing is enable.
can someone give me ACLs configuration details with Example.
Early reply appreciated.
i am going to implement E8200ZL core switch and 2610,2810 edge switch with around 15 VLANs.i want to restrict some of the vlans should not communicate with each other, eg. Server Vlan should be accessible for all vlans. Admin vlan can communicate with around 8 vlans.so on i think this can be achieve by ACLs.
What is the preferred way to stop certain VLANs from communicating with other VLANs once IP routing is enable.
can someone give me ACLs configuration details with Example.
Early reply appreciated.
2 REPLIES 2
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-29-2011 01:39 PM
тАО05-29-2011 01:39 PM
Re: Stop certain VLANs from communicating with other VLANs
hi Dambar
basic ACL configuration for you
this ACL permit vlan4 to vlan 3
and all other vlan deny traffic from vlan 4
send me sh run print your switch I can send detailed ACL configuration
ip access-list standard "20"
10 permit 10.0.11.0 0.0.0.255
20 deny 0.0.0.0 255.255.255.255
exit
module 1 type J94ddA
ip routing
vlan 1
name "DEFAULT_VLAN"
untagged 1,6-24
ip address dhcp-bootp
no untagged 2-5
exit
vlan 2
name "VLAN2"
untagged 2
ip address 10.0.10.200 255.255.255.0
exit
vlan 3
name "VLAN3"
untagged 3
ip address 10.0.11.200 255.255.255.0
exit
vlan 4
name "VLAN4"
untagged 4
ip address 10.0.12.200 255.255.255.0
ip access-group "20" out
exit
vlan 5
name "VLAN5"
untagged 5
ip address 10.0.13.200 255.255.255.0
exit
basic ACL configuration for you
this ACL permit vlan4 to vlan 3
and all other vlan deny traffic from vlan 4
send me sh run print your switch I can send detailed ACL configuration
ip access-list standard "20"
10 permit 10.0.11.0 0.0.0.255
20 deny 0.0.0.0 255.255.255.255
exit
module 1 type J94ddA
ip routing
vlan 1
name "DEFAULT_VLAN"
untagged 1,6-24
ip address dhcp-bootp
no untagged 2-5
exit
vlan 2
name "VLAN2"
untagged 2
ip address 10.0.10.200 255.255.255.0
exit
vlan 3
name "VLAN3"
untagged 3
ip address 10.0.11.200 255.255.255.0
exit
vlan 4
name "VLAN4"
untagged 4
ip address 10.0.12.200 255.255.255.0
ip access-group "20" out
exit
vlan 5
name "VLAN5"
untagged 5
ip address 10.0.13.200 255.255.255.0
exit
cenk
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-29-2011 08:07 PM
тАО05-29-2011 08:07 PM
Re: Stop certain VLANs from communicating with other VLANs
Thnx,
i am still in planning phase.
i am still in planning phase.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP