--> VACL's are used to filter the packets in the same vlan or between two vlan's compared to Normal ACL's which can filter the packets only between two different vlans.
--> VACL's uses ACL to filter the packets.
--> For example if we want to stop the communication between two hosts like 192.168.1.1/24 and 192.168.1.2/24 in vlan 2 .
Switch(config)# access-list 100 permit host 192.168.1.1 host 192.168.1.2
Switch (config)# vlan access-map stopcomm 10
Switch (config)# match ip address 100
Switch(config)# action drop
Switch (config)# vlan access-map stopcomm 20
Switch (config)# action forward
Switch(config)# vlan filter stopcomm vlan-list 2
--> VACL's uses ACL to filter the packets.
--> For example if we want to stop the communication between two hosts like 192.168.1.1/24 and 192.168.1.2/24 in vlan 2 .
Switch(config)# access-list 100 permit host 192.168.1.1 host 192.168.1.2
Switch (config)# vlan access-map stopcomm 10
Switch (config)# match ip address 100
Switch(config)# action drop
Switch (config)# vlan access-map stopcomm 20
Switch (config)# action forward
Switch(config)# vlan filter stopcomm vlan-list 2
0 comments:
Post a Comment