alguien0000
Technical User
Hi, I try to do this:
I have 3 vlans: vlan1, vlan2, vlan3, but i need that :
1. vlan1 only can reach vlan3
2. vlan2 can reach vlan1 and vlan3.
3. vlan3 can reach vlan1 and vlan2.
I made this acl but it does not work because deny traffic bidirectional from vlan1 - vlan2.
entry filter {
if {
source-ipaddress <vlan1-ipaddress segment /24>;
destination-ipaddress <vlan2-ipaddress segment /24>;
} then {
deny;
}
}
anybody have a suggest?
regards in advance.
I have 3 vlans: vlan1, vlan2, vlan3, but i need that :
1. vlan1 only can reach vlan3
2. vlan2 can reach vlan1 and vlan3.
3. vlan3 can reach vlan1 and vlan2.
I made this acl but it does not work because deny traffic bidirectional from vlan1 - vlan2.
entry filter {
if {
source-ipaddress <vlan1-ipaddress segment /24>;
destination-ipaddress <vlan2-ipaddress segment /24>;
} then {
deny;
}
}
anybody have a suggest?
regards in advance.