i want to know how to secure my network.
I have switches for users on each floors, they belong to the same VTP domain distribute by my network core which is a catalyst 4006.
So i create all my vlan's on it and use the routing module integrated on the 4006 to route vlans, the problem is that if i don't change anything everything is routed, the switches are all on the VLAN 1 and my user in VLAN 2 and i don't want to allow traffic between those 2 VLAN's.
What is the best way to do that ? Policy routing, ACLS... can you give some help