Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
363
Views
0
Helpful
1
Replies

Network Admission Control & ACL,s

chrisayres
Level 1
Level 1

‎02-13-2007 01:59 AM - edited ‎02-20-2020 09:38 PM

In doc

http://www.cisco.com/en/US/customer/products/ps6350/products_configuration_guide_chapter09186a00804dfa81.html

with regard to the interface ACL it says

access-list access-list-number {permit | deny} protocol source destination

Example:

Router (config)# access-list 105 permit udp any any

or

Router (config)# access-list 105 permit ip host 192.168.0.2 any

or

Router (config)# access-list 105 deny ip any any

Normally "access-list 105 deny ip any any"

would block everything. Is NAC clever enough to allow EAPoUDP traffic through this ACL. If so what is the point of the previous 2 examples, if not what is the point of blocking everything

Labels:
0 Helpful
1 Reply 1

vkapoor5
Level 5
Level 5

‎02-19-2007 06:48 AM

I believe it should be as below:

Router (config)# access-list 105 permit udp any any

or

Router (config)# access-list 105 permit ip host 192.168.0.2 any

and

Router (config)# access-list 105 deny ip any any

0 Helpful
Customers Also Viewed These Support Documents