I have a WS-C3560X-24P-S 24 port switch that I have
VLANS created on -
this switch will be put into a multi-tenant
building / each port equates to a separate office.
I have all of the interface stuff ready to
go but would like to secure each VLAN from each other.
I am guessing that I need some sort of
access-list to accomplish that - Is there any other way?
It allows you to restrict traffic between
ports (VLANs) without requiring you to create a separate IP addressing scheme
for each VLAN.
Basically, there are 3 types of ports in a
private VLAN environment.
Isolated - Can only communicate with
promiscuous ports
Community - Can only communicate with ports
in the same community and promiscuous ports (you can have multiple
communities).
Promiscuous -WS-C3560X-24P-L Can communicate with all
ports.
没有评论:
发表评论