ip access-list extend inter-vlan-policy
deny ip source 192.168.2.0 0.0.0.255 192.168.3.0 0.0.0.255 // vlan 2、3间不能通信
deny ip source 192.168.4.0 0.0.0.255 192.168.5.0 0.0.0.255 // vlan 4、5间不能通信
permit ip any any //其他流量可以互访
到vlan接口应用ACL
interface vlan 2
ip access-group inter-vlan-policy in
interface vlan 3
ip access-group inter-vlan-policy in
interface vlan 4
ip access-group inter-vlan-policy in
interface vlan 5
ip access-group inter-vlan-policy in
内容全部来源于网络收集,如有侵权,请联系网站删除:QQ:24596024