cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
657
Views
0
Helpful
2
Replies

ACL outside interface permit DHCP

ranbeckycr
Level 1
Level 1

Hello Experts,

Easy question

router fa0/0 (outside interface)- address obtained by DHCP from ISP

I need to know how I can create an acl in the outside int of the router that allows me to BLOCK all other traffic but to allow my router to continue accepting the ip address by DHCP.

Will this rule work?

ip access-l ext outside

permit tcp any int fa0/0 eq 68

permit udp any int fa0/0 eq 68

permit tcp any int fa0/0 eq 67

permit udp any int fa0/0 eq 67

int fa0/0

access-g outside in

Or should I configure something else?

Thanks for any advice.

Randall

Please help

2 Replies 2

ranbeckycr
Level 1
Level 1

I hope somebody can help me.

thx

mvsheik123
Level 7
Level 7

Only for DHCP it works ( I have not tested though), but you might need to open for DNS also.

hth

MS

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: