A am looking at creating a VLAN with access restrictions to other VLANs on our network, but to be controlled via Layer 3 EX 4200 switches.
I would like the VLAN to have some access to basic services such as DNS and DHCP located on a separate VLAN.
Restricted-vlan 10 should be able to access vlan 20 for DNS & DHCP but no other traffic.
However, vlan 20, should not be able to initiate a connection with vlan 10.
Is this sort of configuration possible?
If so, how would I go about implementing this? Would PVLAN be what I need?