asked on
blocking inter-vlan traffic
I have a l3 switch configured with intervlan routing.
host A in vlan 10 : 10.10.10.1
host B in vlan 20 : 20.20.20.2
I need to restrict all traffic initiated from host B towards host A.
But host A should be able to speak to Host B, if Host A initiates the traffic.
for example, if i want to copy a file from host A to host B, i should be able to.
start -> run ->\\20.20.20.2
but the other way around should not work.
i am on a time line .. any quick toughts would be appreciated.
host A in vlan 10 : 10.10.10.1
host B in vlan 20 : 20.20.20.2
I need to restrict all traffic initiated from host B towards host A.
But host A should be able to speak to Host B, if Host A initiates the traffic.
for example, if i want to copy a file from host A to host B, i should be able to.
start -> run ->\\20.20.20.2
but the other way around should not work.
i am on a time line .. any quick toughts would be appreciated.
Switches / Hubs
Last Comment
jchinyou
ASKER
I have a 4506 cat4000-i9s-mz.122-20.EWA4
I did conside using vlan acls . but i think we cant block it one way and allow the other way.
Any ideas !!
I did conside using vlan acls . but i think we cant block it one way and allow the other way.
Any ideas !!
what about instead of using ACL's use private vlans?
ASKER
I cant change the vtp mode to transparent
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
and anyway rather hard to perform, because switches in most cases have only basic ACL capabilities, like allow/deny communications from A to B, and in your case if A needs to reply back to B, then traffic also will be blocked.