Local gateway case

If you use the switch as a gateway for traffic you want routed between subnets, use these general steps to avoid blocking the gateway for authorized applications:

Procedure
  1. Configure gateway security first for routing with specific permit and deny statements.
  2. Permit authorized traffic.
  3. Deny any unauthorized traffic that you have not already denied in step 1.