Hello, I am trying to reduce the scope of PCI cardholder data-carrying networks. I have a POS system that I would like to completely isolate from everything except the firewall. I have a Catalyst 4500 switch. Right now I have no access lists in place. Is such a thing possible?