I am adding a new network 10.102.251.0/25 and for this network i have allow only http & https traffic.
I have one access-list 122 mapped to serial port through which internet traffic flows.
So how can i modify existing access-list as it is allowing all the traffic except some deny statements.
access-list 122 deny tcp any any eq 1025
access-list 122 deny tcp any any eq 2967
access-list 122 permit ip any any
Or should i create a new one say 123 access-list and map it to the serial interface.
access-list 123 permit tcp 10.102.251.0 0.0.0.127 any eq 80
access-list 123 permit tcp 10.102.251.0 0.0.0.127 any eq 443