Higher Education

last person joined: 4 hours ago 

Got questions on how to enable mobility in education? Submit them here!
Expand all | Collapse all

A more straight-forward VLAN/Firewall question

  • 1.  A more straight-forward VLAN/Firewall question

    Posted Jun 29, 2016 09:04 AM

    On a controller (a 7010 for example) I know that if I have a port set to access mode with a single VLAN on it, I have the option to drop in a firewall policy for that VLAN.

     

    So, on a trunked port on said controller with multiple VLANs coming in, is there a way to add individual firewall policies per VLAN?



  • 2.  RE: A more straight-forward VLAN/Firewall question

    Posted Jun 29, 2016 03:41 PM

    So to answer my own question - Yes, there is. Individual session firewall policies can be assigned to individual VLANs on a trunked port. So far the results in my lab set up have been very positive! See the image below...

     trunk vlan session firewall acls.PNG

     

    Can I give myself kudos? LOL :-)



  • 3.  RE: A more straight-forward VLAN/Firewall question

    Posted Jun 29, 2016 05:13 PM

    Nice, I never even tried that. Very nice.