Meraki

Community

Simplifying switch ACL rules

Solved
JA3
Conversationalist
‎Jan 3 2024 8:52 AM
‎Jan 3 2024 8:52 AM

Simplifying switch ACL rules

As an example if I want to block or allow a subnet from accessing a few hosts on a different subnet I have a seperate rule for each destination / host (keeping the same source) e.g.

 

Rule #1 Source 192.168.1.0/21 Destination: 10.10.20.20

Rule #2 Source 192.168.1.0/21 Destination: 10.10.20.21

Rule #3 Source 192.168.1.0/21 Destination: 10.10.20.22

 

Can I instead have one rule where the destination is 10.10.10.20/30 so that all hosts are covered?

 

0 Kudos
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 9:07 AM
‎Jan 3 2024 9:07 AM

Yes, but you are covering one host more than wanted. You have to decide if that is a problem.

View solution in original post

2 Replies 2
RaphaelL
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 8:54 AM
‎Jan 3 2024 8:54 AM

Yes. I don't see why it wouldn't cover it.

KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 9:07 AM
‎Jan 3 2024 9:07 AM

Yes, but you are covering one host more than wanted. You have to decide if that is a problem.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.