ACL on SVI

From: Venkatesh Palani (kvpalani@gmail.com)
Date: Thu Mar 02 2006 - 14:08:09 GMT-3

• Next message: fferrer10@vodafone.es: "OT: Gigaetherchannel using disimilar media interfaces"
• Previous message: jnkmail4eva@yahoo.com: "Frame-relay QoS"
• Next in thread: Schulz, Dave: "RE: ACL on SVI"
• Maybe reply: Schulz, Dave: "RE: ACL on SVI"
• Maybe reply: nobody@lockdown.nu: "RE: ACL on SVI"
• Maybe reply: CCIE 4 Me: "Re: ACL on SVI"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Guys,

I got confused with applying ACL on to a SVI, say if I have two switches say
A and B and there is trunk that permits vlan 100 between them, andl each of
the switch has a SVI for this VLAN say switch A's SVI ip address is
10.0.0.1/24 and switch B SVI's IP address is 10.0.0.2/24. added to this is
switch A connects to the rest of the network. If I want to filter traffic
from some hosts on vlan 100 on switch B to a specific destination in the
network, is it appropriate for me to apply an extended ACL's on switch B's
SVI with outward direction ?

The reason for this confusion is with Physical or logical interface it is
easy to say inside and outside in reference to router CPU but with a SVI the
inside/outside can be seen in two different ways...

any help is appreciated

Thank you,
venkatesh

• Next message: fferrer10@vodafone.es: "OT: Gigaetherchannel using disimilar media interfaces"
• Previous message: jnkmail4eva@yahoo.com: "Frame-relay QoS"
• Next in thread: Schulz, Dave: "RE: ACL on SVI"
• Maybe reply: Schulz, Dave: "RE: ACL on SVI"
• Maybe reply: nobody@lockdown.nu: "RE: ACL on SVI"
• Maybe reply: CCIE 4 Me: "Re: ACL on SVI"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Apr 01 2006 - 10:07:37 GMT-3