160 | Chapter 10. ACLs
ProSafe M4100 and M7100 Managed Switches
3. Create VLAN 38, add port 1/0/38 to it, and assign IP address 10.100.5.34 to it.
(Netgear Switch) #vlan database
(Netgear Switch) (Vlan)#vlan 38
(Netgear Switch) (Vlan)#vlan routing
(Netgear Switch) (Vlan)#exit
(Netgear Switch) #config
(Netgear Switch) (Config)#interface 1/0/38
(Netgear Switch) (Interface 1/0/38)#vlan participation include 38
(Netgear Switch) (Interface 1/0/38)#vlan pvid 38
(Netgear Switch) (Interface 1/0/38)#exit
(Netgear Switch) (Config)#interface vlan 38
(Netgear Switch) (Interface-vlan 38)#routing
(Netgear Switch) (Interface-vlan 38)#ip address 10.100.5.34 255.255.255.0
(Netgear Switch) (Interface-vlan 38)#exit
4. Enable IP routing on the switch.
(Netgear Switch) (Config)#ip routing
5. Add a default route so that all the traffic without a destination is forwarded according to this
default route.
(Netgear Switch) (Config)#ip route default 10.100.5.252
6. Create ACL 101 to deny all traffic that has the destination IP address 192.168.24.0/24.
(Netgear Switch) (Config)#access-list 101 deny ip any 192.168.24.0 0.0.0.255
7. Create ACL 102 to deny all traffic that has the destination IP address 192.168.48.0/24.
(Netgear Switch) (Config)#access-list 102 deny ip any 192.168.48.0 0.0.0.255
8. Create ACL 103 to permit all other traffic.
(Netgear Switch) (Config)#access-list 103 permit ip any any