<div>
Opps - I left that last line in there - you dont need it. &nbsp; <br />
access-list 100 permit ip 
</div>


Opps - I left that last line in there - you dont need it.  
access-list 100 permit ip

<div>
Thanks for your help. &nbsp;I would assume that there is always a deny all at the end which means I would have to add these same commands to the ACL for additonal VLAN to have to VLAN 10. &nbsp;Is that correct? &nbsp;email me back at WPlotkin@Sihle.com 
</div>


Thanks for your help.  I would assume that there is always a deny all at the end which means I would have to add these same commands to the ACL for additonal VLAN to have to VLAN 10.  Is that correct?  email me back at WPlotkin@Sihle.com

<div>
This is filtering inbound to vlan 10 so you would need to add new lines if you had additonal subnet to allow into vlan 10..... 
</div>


This is filtering inbound to vlan 10 so you would need to add new lines if you had additonal subnet to allow into vlan 10.....

<div>
<div class="content wysiwyg-content">
I have a Cisco 4503 switch with Catalyst 2960G attached to it. &nbsp;I also have 2 different VLAN's that I want to use ACL's to control traffic. &nbsp;<br />
<br />
Server VLAN 10<br />
Client Computer VLAN 15<br />
<br />
I want to allow VLAN 15 access to the VLAN 10 with access to only the following ports (TCP and UDP): 80, 443, 53, 3389, 1494, 135 - 139 <br />
*ANY access to IP 10.0.0.4<br />
*LDAP access to IP 10.0.0.2<br />
*LDAP access to IP 10.0.0.5<br />
*Kerberos access to IP 10.0.0.2<br />
*Kerberos access to IP 10.0.0.5<br />
<br />
I'm not sure what commands to use to create this config. &nbsp;Thanks for the help!
</div>
</div>


I have a Cisco 4503 switch with Catalyst 2960G attached to it.  I also have 2 different VLAN's that I want to use ACL's to control traffic.  

Server VLAN 10
Client Computer VLAN 15

I want to allow VLAN 15 access to the VLAN 10 with access to only the following ports (TCP and UDP): 80, 443, 53, 3389, 1494, 135 - 139 
*ANY access to IP 10.0.0.4
*LDAP access to IP 10.0.0.2
*LDAP access to IP 10.0.0.5
*Kerberos access to IP 10.0.0.2
*Kerberos access to IP 10.0.0.5

I'm not sure what commands to use to create this config.  Thanks for the help!

VLAN ACL Configuration Help.

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.

Routers

A switch is a device that filters and forwards packets of data between LAN segments. Switches operate at the data link layer or the network layer of the Open Systems Interconnection (OSI) Reference Model and therefore support any packet protocol. LANs that use switches to join segments are called switched LANs or, in the case of Ethernet networks, switched Ethernet LANs. A hub is a connection point for devices in a network. Hubs are commonly used to connect segments of a LAN. A hub contains multiple ports; when a packet arrives at one port, it is copied to the other ports so that all segments of the LAN can see all packets.