Can you help me with this ( vlan,accesslist,management )

here's the scenario I have two vlan 10 & 20
I have 2 switch and 1 router
the target of this setup is that vlan 10 can ping or reach vlan 20 but vlan 20 cannot be reach or ping vlan 10 it is that possible
Here's the setup
In SW0
vlan 10
name Management
interface FastEthernet0/1
switchport access vlan 10
switchport mode access
interface FastEthernet0/2
switchport trunk allowed vlan 10
switchport mode trunk
In SW1
interface FastEthernet0/1
switchport trunk allowed vlan 20
switchport mode trunk
interface FastEthernet0/2
switchport access vlan 20
switchport mode access
interface FastEthernet0/3
switchport access vlan 20
switchport mode access
In Router
interface FastEthernet0/0.10
encapsulation dot1Q 10
ip address 192.168.10.1 255.255.255.0
ip access-group 1 out
interface FastEthernet0/0.20
no ip address
interface FastEthernet0/1
no ip address
duplex auto
speed auto
interface FastEthernet0/1.20
encapsulation dot1Q 20
ip address 192.168.20.1 255.255.255.0
ip access-group 1 out
interface Vlan1
no ip address
shutdown
ip classless
access-list 1 deny 192.168.20.0 0.0.0.255
access-list 1 permit 192.168.10.0 0.0.0.255
access-list 1 deny host 192.168.20.11
access-list 1 permit host 192.168.10.11
access-list 1 deny any
access-list 1 permit any
Im new so i dont know if my setup is correct ...
can any1 help me about this,,,
thanks.

Hi,
let's suppose PC0(Vlan 10) wants to communicate with PC1(Vlan 20):
-traffic enters f0/0.10 with src 10.11 and dst 20.11 and it is forwarded out f0/1.20 where there is an egress ACL
-this is a standard ACL so it matches on source only and there is a hit for second entry permit 192.168.10.0 0.0.0.255
-now PC1 replies and traffic enters f0/1.20 and is forwarded out f0/0.10 where there is egress ACL
-there is a hit on first entry  deny 192.168.20.0 0.0.0.255( packet src is 20.11 and dst 10.11)
So end result is that Vlan 10 cannot reach Vlan 20.
I don't think this is what you wanted
Now of course traffic sourced from any PC in Vlan 20 destined to PC0 is filtered as you wanted because  it is filtered on f0/0.10 outbound as above.
ACLs are stateless and communication in TCP/IP is bidirectional so the best way to achieve what you want to do if you want to filter more than Pings would be to use CBAC or ZBF or reflexive ACLs
Regards
Alain
Don't forget to rate helpful posts.

Similar Messages

  • HT204146 Good morning.  I just purchased Imatch but cannot download my music from an iphone 5 to IMatch in Icloud.  Can you help me with this?

    Good morning.  I just purchased Imatch but cannot download my music from an iphone 5 to IMatch in Icloud.  Can you help me with this?

    Hi
    Has iTunes completed its scan of your iTunes library on your computer Subscribing to iTunes from an iOS device.
    Jim

  • I am using Dreamweaver CS4  and can no longer connect to Device Central - Can you help me with this?

    I am using Dreamweaver CS4  and can no longer connect to Device Central - Can you help me with this?

    Device Central was discontinued April 23, 2012.
    http://www.adobe.com/products/devicecentral.html
    And replaced with Adobe Edge Inspect CC (for Cloud subscribers)
    http://html.adobe.com/edge/inspect/
    Nancy O.

  • I run Windows 7 Home Premium on an HP Pavilion dv6. I cannot install iTunes or QuickTime. Can you help me with this?

    I run Windows 7 Home Premium on an HP Pavilion dv6. I cannot install iTunes or QuickTime. Can you help me with this?

    Hello raadabdaun,
    Thanks for the question, and welcome to Apple Support Communities.
    I understand you are having issues installing iTunes for Windows. The following article provides the most relevant information and troubleshooting steps:
    Trouble installing iTunes or QuickTime for Windows
    http://support.apple.com/kb/HT1926
    Thanks,
    Matt M.

  • What will i do..there is a message show, "your device in not more eligible to create a free i cloud acount"..and when i try a new one it ask an account number, but i dont have...can you help me with this issue..

    What will i do..there is a message show, "your device in not more eligible to create a free i cloud acount"..and when i try a new one it ask an account number, but i dont have...can you help me with this issue..?
    I try also my old icloud user but its not recognizing the accoun...

    What will i do..there is a message show, "your device in not more eligible to create a free i cloud acount"..and when i try a new one it ask an account number, but i dont have...can you help me with this issue..?
    I try also my old icloud user but its not recognizing the accoun...

  • HT2801 I understand there is a way to use my Super Drive with my PC.  However, it requires a System OS Disk.  Which I never received.  Can you help me with this?

    I understand there is a way to use my Super Drive with my PC.  However, it requires a System OS Disk.  Which I never received.  Can you help me with this?

    Rick6812 wrote:
      I'm using Windows 8.1. 
    I do not know what you mean by a Windows 8.1.  Please clarify.
    The Apple superdrive is designed to be used with the following Macs.
    It will not work with any other Mac unless you perform this modification;
    http://www.tuaw.com/2012/04/02/use-the-macbook-air-superdrive-with-any-almost-ma c/
    Are you trying to get it to work with a PC? 
    Ciao.

  • I play Zuma Blitz on FB; Ever since I upgraded to Firefox 4 I can't play the game the darn frog pauses before shooting and it's a mess; you know it's what I enjoy doing and it needs to be fixed can you help me with this??? Thanks

    Question
    I play Zuma Blitz on FB; Ever since I upgraded to Firefox 4 I can't play the game the darn frog pauses before shooting and it's a mess; you know it's what I enjoy doing and it needs to be fixed can you help me with this??? I am super frustrated ith the situationThanks

    Upgrading to firefox 5 and updating my plug-ins helped a bit. Frog is less 'sticky' now, but it's not solved the problem. Java needs to be up to speed or the frog goes into stasis....

  • We live in motel but my iMac is not connecting with the internet but my cousin has hp laptop that works perfectly fine in my room. So can you help me with this situation?

    We live in motel but my iMac is not connecting with the internet but my cousin has hp laptop that works perfectly fine in my room. So can you help me with this situation?

    Joining an encrypted WEP or WPA Wi-Fi network

  • I've installed Firefox 4 and under the Firefox Menu button on the top-left there is no option to set up Firefox "sync". Can you help me with this?

    I thought I had registered before but had to re-register today. I tried to retrieve my old password using my [email protected] E-Mail address but got no response from Firefox.
    I have an HTC Incredible Android phone and would like to use Firefox as my browser on it, and "sync" its operation to the Firefox application I use on my Apple iMAC. Can you help me?

    Hi from Mozilla Services Operations. We just fixed an issue with the "forgot password" process. If you try to retrieve your old password again, you should receive an email at your account's email address with further instructions.

  • HT4759 In trying to renew iCloud on my iphone I keep getting the response that the security code of my credit card is incorrect. Can you help me with this?

    I have tried to renew my icloud subscription on my iphone. I have been unsuccessful after several attempts. The last time the reason give was that the security code of my credit card is incorrect. It is the number. Can you help?

    Have you tried checking your payment information details to make sure the CVV (security) code is correct (see http://support.apple.com/kb/HT1918)?

  • Can you help me with this code

    hi am new to java so please bare with me , so in this code as you can see i comment some lines of code the one i comment works when i compile it , but why the one with fields does not ? can you please explain this to me
    public class Demo3
                   public static int a = 5;
                   public static int b = 6;
                   public static int c = a+b;
                   public static int d = b-a;
                   a*=5;
         public static void main (String [] args)
              /*int a = 5;
              int b = 6;
              int c = a+b;
              int d = b-a;
              a*=5;
              System.out.println (a);
              System.out.println (b);
              System.out.println (c);
              System.out.println (d);
    }

    >
    public class Demo3
                   public static int a = 5;
                   public static int b = 6;
                   public static int c = a+b;
                   public static int d = b-a;
                   a*=5;This is not possible. write this statement in a function.
    or
    in a static block like
    static  {
          a*=5;
    }>
         public static void main (String [] args)
              /*int a = 5;
              int b = 6;
              int c = a+b;
              int d = b-a;
              a*=5;
              System.out.println (a);
              System.out.println (b);
              System.out.println (c);
              System.out.println (d);

  • Can you help me with this problem? Please!

    I had just created this program that calculates the amount due from an international phone call. and I was wondering what I can do to get the program to execute when the user inputs let's say 3min and some amount of seconds. The program works when the number of minutes the call lasted is an integer, but it does not when the number of minutes the call lasted is lets say 4min30sec. Is there anyway I can get my program to execute both minutes and seconds? Help is very appreciated.
    Here's the program:
    import java.io.*;
    import java.text.DecimalFormat;
    public class PhoneCallBilling_Lab4
         static BufferedReader keyboard = new
         BufferedReader(new InputStreamReader(System.in));
         //Named constants
    static final double CONNECTION_FEE = 1.99;
    static final double FIRST_THREE_MIN_FEE = 2.00;
    static final double COST_OF_EACH_ADDITIONAL_MIN = 0.45;
         public static void main(String[] args) throws IOException
         //Variable declaration
    int noOfMinCallLasted;
    double amountDue;
    DecimalFormat twoDigits =
    new DecimalFormat("0.00");
    System.out.println("This program computes an international phone call.");
    System.out.print("Enter the number of minutes the call lasted: ");
    noOfMinCallLasted =
    Integer.parseInt(keyboard.readLine());
    System.out.println();
    if (noOfMinCallLasted<= 3)
         amountDue = CONNECTION_FEE +
         FIRST_THREE_MIN_FEE;
    else
    amountDue = CONNECTION_FEE +
    FIRST_THREE_MIN_FEE +
    (noOfMinCallLasted - 3) * COST_OF_EACH_ADDITIONAL_MIN;
    System.out.println("The number of minutes the call lasted was "
              + noOfMinCallLasted);
    System.out.println("Amount due = $"
    + twoDigits.format(amountDue));
    }

    How about converting the minutes to seconds and doing
    your calulations all in seconds?ok. I am going to try that but don't you think that it would be quite cumbersome if I was to have someone actually input information. They would have to go through the entire process of trying to figure out how many minutes is in a second and all of the other problems that may occur. If I didnt have to consider all possibilities when executing this program I could leave it as is. However, I have to. And the problem states that we (as in students) have to get the user to input the number of minutes and seconds and the program has to execute.

  • Can you help me with this Premiere CS4 error? (picture included)

    Hello
    I have Adobe Premiere CS4 and when I recently updated to 4.2.1 many of my videos now do not have playback in the source or edit windows. Some are black screens, and some are turquiose during playback. If I click on the edit window to select the video frame and move it within the edit window (say to the left side) it will play back with a turquoise overlay and show the video behind it enlarged. This ONLY happened when I did the update. I am running Windows 7 64bit. When it was at 4.0.0 everything ran just fine. The video I have been working on is a 1080p .MOV file. Has anyone else seen this? There is a picture of the problem below.
    Thanks for any help!
    James Poremba

    Updates, whether with a program, or the OS from MS (or Apple), can cause all sorts of driver issues. These are most often seen with video and audio drivers. Just a simple OS hot-fix can render these obsolete instantly. Also, some recent nVidia drivers contained some "gamer-only" modules for things like 3D rendering and 3D stereovision for use with nVidia goggles. These seem to have been updated, so that these modules do not bring Adobe programs to their knees.
    A couple of XP-Pro hot-fixes messed up my nVidia Quadro in PS. A simple driver update fixed those. I had gone more than 6 mos. with not one problem, and then installed the hot-fixes and BOOM!
    Good luck,
    Hunt

  • HT1766 My iphone is disabled because the wrong passcode was entered too many times.  Can you help me with this?

    I entered the wrong passcode too many times and now my iPhone is disabled.  What can I do to retrieve the passcode?

    iOS: Forgotten passcode or device disabled after entering wrong ...

  • I used to click on a email link and my gmail app would come up. Now it does not. Can you help me with this?

    ''locking as a duplicate - https://support.mozilla.com/en-US/questions/841566''
    I wanted to respond to an ad on craigslist, and when I click on the email link, nothing happens.

    Try here.  http://reviews.cnet.com/8301-13727_7-10329974-263.html

Maybe you are looking for