Hello,
What is the default behavior of ACL of the L3 router interfaces in Ruckus / Brocade FastIron?
By default, routing between virtual router interfaces is permitted or denied?
I want to use Ruckus L3 switch for inter VLAN routing between two VLAN connected to virtual router interfaces. Nothing complicate. Only give access from some hosts of one network to some specific ports of some hots in the other network. For everything else the traffic between these two networks in both directions must be denied.
ve1 - VLAN 1 - 192.168.1.0/24
ve 10 - VLAN 10 - 192.168.10.0/24
How to create Permit rules I have understood. But do I need additional deny rules?
What is the default behavior of ACL of the L3 router interfaces in Ruckus / Brocade FastIron?
By default, routing between virtual router interfaces is permitted or denied?
I want to use Ruckus L3 switch for inter VLAN routing between two VLAN connected to virtual router interfaces. Nothing complicate. Only give access from some hosts of one network to some specific ports of some hots in the other network. For everything else the traffic between these two networks in both directions must be denied.
ve1 - VLAN 1 - 192.168.1.0/24
ve 10 - VLAN 10 - 192.168.10.0/24
How to create Permit rules I have understood. But do I need additional deny rules?
Code:
ip access-list extended dmz2lan
permit tcp 192.168.10.0/24 host 192.168.1.100 eq 53
permit udp 192.168.10.0/24 host 192.168.1.100 eq 53
permit tcp host 192.168.10.50 host 192.168.1.100 eq ftp
int ve 10
ip access-group dmz2lan in