3 Replies Latest reply on May 29, 2015 7:18 AM by evanh

    Access List help

    vontech615 New Member

      I have 2 VLANs setup (10.10.10.0/24-VOICE, 10.10.1.0/24-DATA).  I'd like to block users on the data VLAN from accessing the web interface on the phones on the voice VLAN.   I want to permit myself to do so though.  I think I have the access list correct(?) but I'm not sure if I should map both vlans or just the data vlan?

       

      permit tcp host 10.10.1.81  10.10.10.0 0.0.0.255 eq www

      deny   tcp any  10.10.10.0 0.0.0.255 eq www

      permit ip any  any

       

      hw-access-map Map1

      vlans X

      forward ip BLOCK_HTTP_VLAN10