<div>
I make the ACL on our core 3560 switch by creating the ACL:<br />
<br />
ip access-list extended Guest<br />
&nbsp;deny &nbsp; ip any 192.168.0.0 0.0.255.255<br />
&nbsp;permit ip any any<br />
<br />
and applying it to the VLAN interface:<br />
<br />
interface Vlan51<br />
&nbsp;description Wireless Network<br />
&nbsp;ip address 192.168.51.1 255.255.255.0<br />
&nbsp;ip access-group Guest in
</div>


I make the ACL on our core 3560 switch by creating the ACL:

ip access-list extended Guest
 deny   ip any 192.168.0.0 0.0.255.255
 permit ip any any

and applying it to the VLAN interface:

interface Vlan51
 description Wireless Network
 ip address 192.168.51.1 255.255.255.0
 ip access-group Guest in

<div>
<div class="content wysiwyg-content">
I would like to setup a private VLAN on our network that will only have Internet access. &nbsp;This would mainly be used via wireless. &nbsp;Currently we have a Cisco ASA 5505 as our firewall, several Cisco 2960 switches and a Cisco 4402 Wireless Controller.<br />
<br />
I am familiar with setting up VLANs both on the switches and wireless controller. &nbsp;But what I can't figure out is how to make that VLAN have no access to any other VLAN but still have internet access. &nbsp;I am thinking ACLs, but not sure where to start, I've not really every played with them.<br />
<br />
Thanks in Advance!
</div>
</div>


I would like to setup a private VLAN on our network that will only have Internet access.  This would mainly be used via wireless.  Currently we have a Cisco ASA 5505 as our firewall, several Cisco 2960 switches and a Cisco 4402 Wireless Controller.

I am familiar with setting up VLANs both on the switches and wireless controller.  But what I can't figure out is how to make that VLAN have no access to any other VLAN but still have internet access.  I am thinking ACLs, but not sure where to start, I've not really every played with them.

Thanks in Advance!

Setting up Private VLAN with only Internet Access

Networking hardware includes the physical devices facilitating the use of a computer network. Typically, networking hardware includes gateways, routers, network bridges, modems, wireless access points, networking cables, line drivers, switches, hubs, and repeaters. But it also includes hybrid network devices such as multilayer switches, protocol converters, bridge routers, proxy servers, firewalls, network address translators, multiplexers, network interface controllers, wireless network interface controllers, ISDN terminal adapters and other related hardware.

Networking Hardware-Other

Network security consists of the policies adopted to prevent and monitor authorized access, misuse, modification, or denial of a computer network and network-accessible resources. Network security involves the authorization of access to data in a network, and covers a variety of computer networks; conducting transactions and communications among businesses, government agencies and individuals. Networks can be private, such as within a company, and others which might be open to public access.

Network Security

Wireless networking is anything related to the transfer of data between two (or more) devices without the use of a physical connection, ranging from getting advice on a new Bluetooth headset to configuring sophisticated enterprise level networks.