Thanks Aki. This is good info.
@Cynthia: If u still wonna use ACLs, check;
http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/31sga/configuration/guide/secure.html
You can actually do ACLs at layer 2 (using MAC address)On Wed, Oct 14, 2009 at 10:35 AM, Cynthia Wahome <cwahome@jambo.co.ke> wrote:
thanks alot aki
> ----------------------------------------------
> On Wed, Oct 14, 2009 at 9:25 AM, Cynthia Wahome <cwahome@jambo.co.ke>
> wrote:
>
>> Hi All,
>> I have 5 VLANs in my network configured in my L3 switch 4500. currently
>> all VLANs can ping and reach each others, means 192.168.3.100 host in
>> my
>> vlan2 can reach 192.168.1.100 which is vlan3. I want to create an ACL in
>> my L3 switch to deny the Vlans to access or ping each other, I just want
>> them to access my servers 172.16.1.10 - 172.16.1.30 which are in the
>> default Vlan1. can someone advise me which the commands and where to
>> apply
>> them in the L3 switch.
>>
>> Thanks
>>
>
> Hey Cynthia, I've no experience on Cisco layer3 but worked on Dlink layer
> 3.
> However, pls go to the link below, Cisco has provided all the info about
> configuring Private VLANs and also enable routing. It has alos given the
> commands for the ports, which will help. HTHs.
>
> http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.1/19ew/configuration/guide/pvlans.html
>
> http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.1/19ew/configuration/guide/l3_int.html#wp1029700
>
> This message has been scanned for viruses and
> dangerous content by Jambo MailScanner, and is
> believed to be clean.
> ---------------------------------------------
> "easy access to the world"
>
> _______________________________________________
> Skunkworks mailing list
> Skunkworks@lists.my.co.ke
> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
> ------------
> Skunkworks Rules
> http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
> ------------
> Other services @ http://my.co.ke
> Other lists
> -------------
> Announce:
> http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
> Science: http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
> kazi: http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
----------------------------------------------
This message has been scanned for viruses and
dangerous content by Jambo MailScanner, and is
believed to be clean.
---------------------------------------------
"easy access to the world"
_______________________________________________
Skunkworks mailing list
Skunkworks@lists.my.co.ke
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------
Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke
Other lists
-------------
Announce: http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
Science: http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
kazi: http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general
_______________________________________________
Skunkworks mailing list
Skunkworks@lists.my.co.ke
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------
Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke
Other lists
-------------
Announce: http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce
Science: http://lists.my.co.ke/cgi-bin/mailman/listinfo/science
kazi: http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general