Alcatel Unleashed

The #1 Worldwide board for technical support on Alcatel-Lucent Voice & Data gear.
https://alcatelunleashed.com/

Vlan Must not Communicate

https://alcatelunleashed.com/viewtopic.php?t=21752

Page 1 of 1

Vlan Must not Communicate

Posted: 13 May 2013 18:34
by mazouab
Hello,

I'm having some problem with my vlans,
I configured 3 vlans on my 6850E, each of them with an interface.
Example for vlan 1 : -> ip interface VLAN_10 address 172.16.20.2 mask 255.255.255.0 vlan 10

I configured also default port, like -> vlan 10 port defautl 1/1-5

But my problem is that hosts in the first vlan are able to ping other hosts in another vlan.!! That's normally impossible..!

Can you help me please.

Thx.

Re: Vlan Must not Communicate

Posted: 14 May 2013 04:51
by duBeN
hi,

that is normal intervlan routing. If you want to disable it, configure each vlan interface with no forward option. Traffic from this vlan then won't be routed to the different vlan.

switch -> ip interface test address 192.168.10.10/24 vlan 1 no forward

Re: Vlan Must not Communicate

Posted: 15 May 2013 04:31
by devnull
Otherwise use ACLs or a Firewall (i'd prefer a firewall over ACLs..)
All times are UTC-04:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited