Meraki

Community

Simplifying switch ACL rules

Solved
JA3
Conversationalist
‎Jan 3 2024 8:52 AM
‎Jan 3 2024 8:52 AM

Simplifying switch ACL rules

As an example if I want to block or allow a subnet from accessing a few hosts on a different subnet I have a seperate rule for each destination / host (keeping the same source) e.g.

 

Rule #1 Source 192.168.1.0/21 Destination: 10.10.20.20

Rule #2 Source 192.168.1.0/21 Destination: 10.10.20.21

Rule #3 Source 192.168.1.0/21 Destination: 10.10.20.22

 

Can I instead have one rule where the destination is 10.10.10.20/30 so that all hosts are covered?

 

0 Kudos
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 9:07 AM
‎Jan 3 2024 9:07 AM

Yes, but you are covering one host more than wanted. You have to decide if that is a problem.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

2 Replies 2
RaphaelL
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 8:54 AM
‎Jan 3 2024 8:54 AM

Yes. I don't see why it wouldn't cover it.

KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 3 2024 9:07 AM
‎Jan 3 2024 9:07 AM

Yes, but you are covering one host more than wanted. You have to decide if that is a problem.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2025 Cisco Systems, Inc.