Wired Intelligent Edge

last person joined: 2 days ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Back to discussions
Expand all | Collapse all

Access Lists

This thread has been viewed 0 times

  • 1.  Access Lists

    Posted Nov 14, 2017 10:24 AM

    I want to prevent a vlan on the switch from being able to talk to other vlans, below is what I thought was the solution, but it denies traffic to all. I want to deny to all apart from one vlan (172.16.10.0)

     

    ip access-list extended "101"
         10 permit ip 172.16.20.0 255.255.255.0 172.16.10.0 255.255.255.0
         20 deny ip 172.16.20.0 255.255.255.0 172.16.0.0 255.255.0.0

     

     

    vlan 207
       name "Test"
       ip access-group "101" out
       ip address 172.16.20.1 255.255.255.0



  • 2.  RE: Access Lists
    Best Answer

    Posted Nov 14, 2017 10:51 AM

    incase anyone is interested, I solved.

     

    I got my subnets wrong. should have been 0.0.0.255 not 255.255.255.0