[c-nsp] Disable some routing
Nate Carlson
cisco-nsp at natecarlson.com
Wed Jun 6 08:37:50 EDT 2007
On Wed, 6 Jun 2007, Bernd Ueberbacher wrote:
> I've got a bit of a strange question... I have a small Cisco Router with
> some VLANs and a Catalyst behind. If I connect one office to the switch
> in a seperate VLAN with an official IP address, the person can reach
> everything, but in my case (or the general case?) a bit too much. One
> VLAN on the switch and the Router is for management, with 10.0.0.0/24,
> but as the router is doing what it is supposed to do, he routes
> everything for this network, as the router also has an IP in this
> network. A person in the office can now ping, telnet, ... into my
> management network. If I remove the IP address from the routers VLAN,
> the problem is "solved", but not the way I want it to be solved *G*
>
> I hope you understand my problem, because it's somehow hard to explain
> and even harder to search for in google ;-)
In other words - you want to prevent one of your networks from reaching
another one of your networks, correct?
Time to write an ACL! :)
------------------------------------------------------------------------
| nate carlson | natecars at natecarlson.com | http://www.natecarlson.com |
| depriving some poor village of its idiot since 1981 |
------------------------------------------------------------------------
More information about the cisco-nsp
mailing list