This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

ACL for applying over VLAN

ACL for applying over VLAN

Alok_Shukla
New Contributor III

‎02-28-2018 04:00 AM

We have 4 VLAN over Core Switch (MLAG configured)
VLAN 1: 10.3.1.0
VLAN 2: 10.3.2.0
VLAN 3: 10.3.3.0
VLAN 4: 10.3.4.0

we don't want VLAN-3 and VLAN-2 to communicate with VLAN-1.
But VLAN-2 and VLAN-3 should communicate each other.
Help to apply me what ACL should be applying?
7 REPLIES 7

Alok_Shukla
New Contributor III

‎02-28-2018 11:02 AM

It's not working, still pinging both VLAN
0 Kudos

Alok_Shukla
New Contributor III
In response to Alok_Shukla

‎02-28-2018 11:02 AM

yes, we had applied on ingress direction but still, both VLAN can ping each other.

Note If an ACL needs to be installed for traffic that is L3 routed, and the ingress/egress ports are on different packet-processing units or different slots, and any of the following features are enabled, we recommend that you install the policy on a per-port basis rather than applying it as a wildcard, or VLAN-based ACL. • MLAG (Multi-switch Link Aggregation Group) • PVLAN • Multiport-FDB (forwarding database)
0 Kudos

Aman
New Contributor II
In response to Alok_Shukla

‎02-28-2018 11:02 AM

** count Corp_Vlan_3 in last statement.
I also doing first time so it could be wrong , but it should work.
0 Kudos

Aman
New Contributor II
In response to Alok_Shukla

‎02-28-2018 11:02 AM

did you apply on the Ingress direction?
0 Kudos
li.common.scroll-to.top
GTM-P2G8KFN