Configuring VLAN Maps
Applying a VLAN Map to a VLAN
Beginning in privileged EXEC mode, follow these steps to apply a VLAN map to one or more VLANs:
Command
Step 1
configure terminal
Step 2
vlan filter mapname vlan-list list
Step 3
show running-config
Step 4
copy running-config startup-config
To remove the VLAN map, use the no vlan filter mapname vlan-list list global configuration command.
This example shows how to apply VLAN map 1 to VLANs 20 through 22:
Switch(config)# vlan filter map 1 vlan-list 20-22
Using VLAN Maps in Your Network
These sections describes some typical uses for VLAN maps:
•
Denying Access to a Server on Anothera VLAN
You can restrict access to a server on another VLAN. For example, server 10.1.1.100 in VLAN 10 needs
to have access denied to these hosts (see
•
•
Cisco Catalyst Blade Switch 3120 for HP Software Configuration Guide
34-34
Purpose
Enter global configuration mode.
Apply the VLAN map to one or more VLAN IDs.
The list can be a single VLAN ID (22), a consecutive list (10-22), or a string
of VLAN IDs (12, 22, 30). Spaces around the comma and hyphen are
optional.
Display the access list configuration.
(Optional) Save your entries in the configuration file.
Denying Access to a Server on Anothera VLAN, page 34-34
Hosts in subnet 10.1.2.0/8 in VLAN 20 should not have access.
Hosts 10.1.1.4 and 10.1.1.8 in VLAN 10 should not have access.
Chapter 34
Figure
34-4):
Configuring Network Security with ACLs
OL-12247-01