The ACL configuration of Cisco 2960 switch, I use the WS-C2960S-24TS-L most time.
The basic
configuration:
SW1> en; enter privilege
mode
SW1# conf T; enter global configuration mode
SW1 (config hostname SW1) # hostname setting switch;
SW1 (config) enable secret Cisco #; privileges encrypted password
SW1 (config) enable password Cisco #; non password privileges
SW1 (config) line console 0 #; access control stage
SW1 (config-line login) #; allowed to log on
SW1 (config-line password cisco1) #; set password XX
SW1 (config) line vty 04 #; enter virtual terminal
SW1 (config-line login) #; allowed to log on
SW1 (config-line password cisco2) #; set password XX
SW1# exit; return command
The ACL configuration of Cisco 2960 switch
Exchange of
visits between /*vlan3 and vlan5, between vlan4 and vlan5 exchange between vlan3 and vlan4, prohibit visits.
SW5 (config) access-list permit IP 192.168.3.0 # 101 0.0.0.255 192.168.5.0 0.0.0.255
SW5 (config) access-list permit IP 192.168.4.0 # 102 0.0.0.255 192.168.5.0 0.0.0.255
SW5 (config) access-list permit IP 192.168.5.0 # 103 0.0.0.255 0.0.0.0 255.255.255.255
Application to the VLAN port **************** **************** ACL
SW5 (config) int VLAN
3 #
SW5 (config-if) IP access-group
101 in #
SW5 (config) int VLAN
4 #
SW5 (config-if) IP access-group
102 in #
SW5 (config int f0/24) #
SW5 (config-if) IP access-group
103 in #
The most popular switch price: WS-C2960S-24TS-L Price.
没有评论:
发表评论