?
Solved

Cisco private vlan

Posted on 2007-12-04
3
Medium Priority
?
1,134 Views
Last Modified: 2010-04-21
Hi,
I have a cisco 4506 and a 3com switch. I would like to prevent traffic from the 3com switch with communicating with other vlans on the cisco 4506 switch. The hosts on the 3com switch should be able to talk to each other but not to the cisco 4506 switch. The 3com switch will have a ip address assigned to it, it should be manageable from any vlans within the 4506.
I have heard of private vlans , would they be way to implement it? As I am new to private vlans, it would be appreciated if sample commands could be provided. Thanks.
0
Comment
Question by:cwtang
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 50

Accepted Solution

by:
Don Johnston earned 1400 total points
ID: 20402292
The concept of private VLANs is to restrict traffic within a VLAN. It sounds like you're trying to restrict traffic from other VLANs. For that, you would use an ACL on the layer 3 interfaces of the route processor.
0
 
LVL 1

Assisted Solution

by:mmurraynet
mmurraynet earned 600 total points
ID: 20403059
Are the 3COM hosts on a different subnet? If so, use dj's suggestion and go with ACLs:

In the following example the subnet of your 3COM hosts is 172.16.4.0 /24.

Router(config)# access-list 1 deny 172.16.4.0 0.0.0.255
Router(config)# access-list 1 permit any

Note that there is an implicit deny at the end of this list (access-list deny all)

Router(config)# interface ethernet 0
Router(config-if)# ip access-group 1 in
0
 

Author Closing Comment

by:cwtang
ID: 31412552
Thanks for the information. I thought there was alternative to acls. Thanks for the help :)
0

Featured Post

Percona Live Europe 2017 | Sep 25 - 27, 2017

The Percona Live Open Source Database Conference Europe 2017 is the premier event for the diverse and active European open source database community, as well as businesses that develop and use open source database software.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses
Course of the Month11 days, 1 hour left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question