Access-lists on Cisco 3550 switches

Below is a digram of my network.  Right now all networks can talk to each other.  For example, if I am on a server in the network, from there I can RDP into a server in the network.  I need to create a access-list so these networks can't talk to each other.  I am using VTP, thats why all switches share a common VLAN.  Can someone provide me with an access-list example to accomplish this.  thanks.

Switch Diagram
Who is Participating?
Ken BooneConnect With a Mentor Network ConsultantCommented:

Here is the ACL for vlan 30 - this blocks access to vlan 40 and 50 and allows everything else.
ip access-list extended vlan30-acl
deny ip any
deny ip any
permit ip any any

Then on
interface vlan30
access-group vlan30-acl in

No you need to it on the switch instead of the asa.
Ken BooneNetwork ConsultantCommented:
So if you are on vlan 30 you do not want to get to vlan 40 or vlan 50?  Is that correct?  Should vlan 30 be allowed to get to the internet or any other networks?
denver218Author Commented:
Yes if I am on vlan 30, I don't want to see vlan 40 or 50.  I do want all network to have access to the internet.  Thanks.
denver218Author Commented:
I do have an Cisco ASA5510 on this network.  Should I just create an access-list on the inside for this on the ASA5510 instead of creating the access-list on switches?
denver218Author Commented:
That worked.  Thanks
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.