Thursday, December 5, 2019

completely isolating VLANs

I have a L3 switch (Aruba 2930F) with 3 VLANs: 10, 20 and 30 This is the entire network.

IP routing (intervlan) and Multicast routing is not enabled.

Do I still need to apply ACL in order to lock down/isolate each vlan?

If ACL still need to be applied, would it be something like this on each vlan?

access-list 101 deny ip 10.0.10.0 0.0.0.255 10.0.20.0 0.0.0.255 deny ip 10.0.30.0 0.0.0.255 10.0.20.0 0.0.0.255 

Thanks



No comments:

Post a Comment