How to deny access on certain IPs using ACL and policy command?

  • 0
  • 1
  • Problem
  • Updated 6 months ago
  • Not a Problem
Hi Extreme Experts,

Good day.

I have configuration in x670 like this.
vlan wifi 192.168.3.1/24,
Default vlan 192.168.2.1/24
Router IP 192.168.2.254/32

There are servers and storage in default vlan 192.168.2.11/24,
192.168.2.15,
192.168.2.18

I want that vlan wifi can access the router upto internet but block to access the server and storage IP

Problem is.
I did policy and configured it in ACL ingress
Source vlan wifi
Destination router IP
Permit

Source vlan wifi
Destination server and storage IPs
Deny

Thanks and Best regards,
Newbie
Photo of Resolut1on

Resolut1on

  • 824 Points 500 badge 2x thumb
  • Sad

Posted 6 months ago

  • 0
  • 1
Photo of Sushruth Sathyamurthy

Sushruth Sathyamurthy, Employee

  • 784 Points 500 badge 2x thumb
Hello,

You want to deny permission for users on VLAN wifi to access storage servers on VLAN default right?

Can you share the ACL policy?