Limit Internet Access by port

Unanswered Question
Sep 5th, 2007

Hi, I'm learning CISCO at the moment and was wondering if you can help me. My 877W Router is configured with DHCP from 10.10.10.2 to 10.10.10.254 and any PC which is connected to the router can get internet access. 10.10.10.1 is the router.

My question is can someone tell me :

a. How I limit internet access so say only IP addresses 10.10.10.2, 10.10.10.3 can get internet access and no-one else can but the other clients 10.10.10.4 etc can still talk to the other PC's on the LAN.

b. How I limit internet acess by fastethernet port so say ports 1,2 and 3 can get internet access but port 4 cannot.

Running config is attached.

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
lgijssel Wed, 09/05/2007 - 03:25

You have to modify access-list 1 like this:

access-list 1 permit 10.10.10.2

access-list 1 permit 10.10.10.3

This denies NAT translation for the other host which effectively denies them internet access.

regards,

Leo

Actions

This Discussion