<div>
Is there a trunk on the port? then try: <i>switchport trunk allowed vlan 1,2,3</i> This way you define which VLAN's are allowed through.
</div>


Is there a trunk on the port? then try: switchport trunk allowed vlan 1,2,3 This way you define which VLAN's are allowed through.

<div>
OOPS - forgot to mention that.<br />
Not a trunked port. That was my first thought also.
</div>


OOPS - forgot to mention that.
Not a trunked port. That was my first thought also.

<div>
Ok.......<br />
<br />
Acces list blocking by source address then?
</div>


Ok.......

Acces list blocking by source address then?

<div>
an ACL will take care of this apply it outbound on the interfaces connecting to the router.
</div>


an ACL will take care of this apply it outbound on the interfaces connecting to the router.

<div>
Should I also apply it to inbound to stop incoming? I cannot figure out the inverted mask for the ip range i need blocked. Here is the range of IP's I need to block both ways. Is there a wildcard or something? Any suggestions?<br />
<br />
192.168.0.0 - 192.168.47.255 
</div>


Should I also apply it to inbound to stop incoming? I cannot figure out the inverted mask for the ip range i need blocked. Here is the range of IP's I need to block both ways. Is there a wildcard or something? Any suggestions?

192.168.0.0 - 192.168.47.255

<div>
<div class="content wysiwyg-content">
Here is the scenario. 6509 core, lots of 3750 stacks, 2- 4948-10GE. Router connects to 4948.<br />
Multiple VLANs with inter VLAN routing.<br />
I have NO access to Router. Need to stop a group of VLAN's from communicating to/from the outside world.<br />
<br />
Network reconfiguration in progress, but need a quick, down and dirty method to accomplish this.<br />
<br />
Can I block these at the port on the 4948 that the router is connected to?<br />
<br />

</div>
</div>


Here is the scenario. 6509 core, lots of 3750 stacks, 2- 4948-10GE. Router connects to 4948.
Multiple VLANs with inter VLAN routing.
I have NO access to Router. Need to stop a group of VLAN's from communicating to/from the outside world.

Network reconfiguration in progress, but need a quick, down and dirty method to accomplish this.

Can I block these at the port on the 4948 that the router is connected to?



Stop InterVLAN routing at the edge.

Network design and methodology, also known as network architecture, is the design of a communication network. It is a framework for the specification of a network's physical components and their functional organization and configuration, its operational principles and procedures, as well as data formats used in its operation. In telecommunication, the specification of a network architecture may also include a detailed description of products and services delivered via a communications network, as well as detailed rate and billing structures under which services are compensated.

Network Architecture

A switch is a device that filters and forwards packets of data between LAN segments. Switches operate at the data link layer or the network layer of the Open Systems Interconnection (OSI) Reference Model and therefore support any packet protocol. LANs that use switches to join segments are called switched LANs or, in the case of Ethernet networks, switched Ethernet LANs. A hub is a connection point for devices in a network. Hubs are commonly used to connect segments of a LAN. A hub contains multiple ports; when a packet arrives at one port, it is copied to the other ports so that all segments of the LAN can see all packets.