How To | Filter Q-SYS traffic in a network switch
Learn how to effectively segment Q-SYS traffic in your network switch for optimised performance.
Procedure
- Create the ACL
- On a Cisco switch, the command would be:
access-list 100 permit tcp host 192.168.1.9 host 192.168.2.10 eq 1702
- On a Cisco switch, the command would be:
- Apply the ACL to SVI.
- The Cisco commands would be:
interfaceVLAN 1
ip access-group 100 inThe solution is to configure a network switch with an access control list (ACL) so that only the Q-SYS control traffic from LAN A can reach the AV CONTROL network.
- Control traffic will use TCP port 1702
- The IP address and submask for Q-SYS LAN A will be 192.168.1.9 255.255.255.0 gateway 192.168.1.1
- Q-SYS LAN A will be located on VLAN 1(192.168.1.1), and the AV Control network on VLAN 2 (192.168.2.1).
- The switch will be a layer 3 switch that routes between VLAN 1 and VLAN 2.
- The ACL will be applied to SVI 1 (VLAN 1)
Additional Resources
Configure and Filter IP Access Lists with Cisco
Configure Commonly Used IP ACLs with Cisco
Cisco Router Access Lists YouTube Video