filtering between Vlans

[dhibsystel]

I have created 2 vlans ( vlan "data" and vlan "server")

I assigned IP address 172.16.10.1/24 to vlan "data" and 192.168.1.1/24 to vlan "server"
I want to block traffic betwwen the 2 vlans.
PC from vlan "data" can't communictate with PC from Vlan "server"

many thanks

 

[rn4it]

don't enable ipforwarding on the 2 VLANs or is there other vlans that need to access these? If so use the create access-list command to deny traffic between these networks.

hope this helps

 

[dhibsystel]

I have more than 2 vlans
I have about 20 vlans.

have you an idea about implementing acces list

 

[w33mhz]

Are you using ExtremeWare or XOS ?

 

[w33mhz]

create access-list deny_data ip dest 192.168.1.0/24 source 172.16.10.0/24 deny ports any

 

[dhibsystel]

I use XOS

if I implement this ACL and I I reboot a switch.
is till take effect ?

 

[rn4it]

as long as you save the changes,
save <enter>

 

[dhibsystel]

I mean the dynamic ACL

 

[rn4it]

If you implement the following ACL
create access-list deny_data ip dest 192.168.1.0/24 source 172.16.10.0/24 deny ports any
then save the changes by using the save command, it will still take effect after a reboot. If you do not save it, then after the reboot the command will be lost.

 

[dhibsystel]

ok many thanks