All ports in the VLAN are enforced by VLAN access control list. To have end to end VLAN traffic filtering, the VLAN maps needs to be configured on those switches.
Identify with permit statement ACLs (IP, MAC) then use VLAN maps to match the ACLs to drop packets
By default , VLAN map has implicit deny at end and all traffic will stop so traffic permit ACL is required
No comments:
Post a Comment