Hi everyone,
I have a few switches connected with, say, 4 vlans enabled.
192.168.1.0/24 (prod servers) 192.168.2.0/24 (workstations) 192.168.5.0/24 (guest WiFi) 192.168.6.0/24 (future dev servers lan)
I want .1.0 and .2.0 to talk. Currently it’s being handled via our L2 firewall. Ping times between them are about 1.5ms. Intra, it’s about .5ms
what I don’t want are all vlans talking. I literally only want these two to be able to communicate. 5.0 and 6.0 need to be isolated.
If I turn on IP routing on the switch, won’t that enable all VLANs to talk to each other? Assuming this, I’d most likely then need to then setup acls..
Is this as simple as just creating a route from 1 to 2? Am I overthinking it?
Any help would be appreciated!
No comments:
Post a Comment