Network Admission Control & ACL,s

Unanswered Question
Feb 13th, 2007

In doc

http://www.cisco.com/en/US/customer/products/ps6350/products_configuration_guide_chapter09186a00804dfa81.html

with regard to the interface ACL it says

access-list access-list-number {permit | deny} protocol source destination

Example:

Router (config)# access-list 105 permit udp any any

or

Router (config)# access-list 105 permit ip host 192.168.0.2 any

or

Router (config)# access-list 105 deny ip any any

Normally "access-list 105 deny ip any any"

would block everything. Is NAC clever enough to allow EAPoUDP traffic through this ACL. If so what is the point of the previous 2 examples, if not what is the point of blocking everything

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
vkapoor5 Mon, 02/19/2007 - 06:48

I believe it should be as below:

Router (config)# access-list 105 permit udp any any

or

Router (config)# access-list 105 permit ip host 192.168.0.2 any

and

Router (config)# access-list 105 deny ip any any

Actions

This Discussion