Comware

 View Only
last person joined: 4 days ago 

ACL to limit vlan for only one subnet with vlan interf. IP

This thread has been viewed 3 times
  • 1.  ACL to limit vlan for only one subnet with vlan interf. IP

    Posted 19 days ago
    Hi,

    today I try limit traffic between VLANs. I need isolate some from intervlan routing. So I try this

    acl number 2016
    description Only Vlan16
    rule permit source 192.168.16.0 0.0.0.255
    rule deny any
    quit

    interface Vlan-interface16
    mtu 9000
    ip address 192.168.16.1 255.255.255.0
    packet-filter 2016 inbound
    packet-filter 2016 outbound
    return

    All working - from Vlan1 with 192.168.1.0/24 I do not had acces to any IP from 192.168.16.0/24 except interface vlan IP (192.168.16.1).

    Is it possible limit interface IP too?

    Thank you

    Pavel