Hi all, i am trying to prevent host 10.1.40.1 vlan 40 from accessing any
other host in vlan 40;
here's my config:-
ip access-lists extended 10.1.40.1
permit ip host 10.1.40.1 any
vlan access-map TEST 10
match ip add 10.1.40.1
action drop
vlan access-map TEST 20
action forward
vlan filter TEST vlan-list 40
working on a 3560 but anytime i paste this command it seems not be working,
is there anything i am missing?
Q2. also want to do inter-vlan filter, i.e host 10.1.40.1 should not be
able to access a server in 10.1.50.1 in vlan 50.
->will the config be done as close to the destination i.e the switch which
the vlan 50 or the server is located or it doesnt really matter, because in
my network i have alots of switches on each floor in building segmented on
each floor in different vlans
Thanks Alot.
Blogs and organic groups at http://www.ccie.net
Received on Sat Apr 28 2012 - 16:55:10 ART
This archive was generated by hypermail 2.2.0 : Tue May 01 2012 - 08:20:46 ART