security - might be more advanced than CCNA though?
alliasneo
Member Posts: 186
in CCNA & CCENT
Hey guys, I've created the above topology and have a couple of PC's in separate VLAN's which works really well on a LAN but when I ping from PC10 over to the the PC in VLAN10 (circled Blue) I can get the pings through. How would I stop this?
The security going over the LAN is pretty straight forward as the different ports on the switch are in different VLAN's so that's all fine but what about over the WAN? The routers seem to forward these pings regardless of VLAN's - this might be a more advanced topic though in which case I won't worry about it for now.
thanks
Comments
-
networker050184
Mod Posts: 11,962 Mod
If you want to prevent traffic look into ACLs (Access Control Lists). This isn't beyond the scope of the CCNA.An expert is a man who has made all the mistakes which can be made. -
Monkerz
Member Posts: 842
Or if you do not want the 192.168.10.0/24 network able to communicate with any other network, just remove the advertisement from R4 (if you are using a RP) or remove the static route you have for it on R3.