I have a Cisco 6500-E core switch and I need to setup an access list to prevent two subnets from being able to talk to one another. I’ve never really worked with access-lists so I’m not sure where to start.
I need to block 10.0.31.0/24 from accessing 10.0.50.0/24 and vice versa. Would I just enter
access-list 20 deny ip 10.0.31.0 0.0.0.255 10.0.50.0 0.0.0.255
access-list 20 deny ip 10.0.50.0 0.0.0.255 10.0.31.0 0.0.0.255
access-list 20 permit ip any any
I know this is simple, but this is a production switch that doesn’t have a very big window for me to try things.