I have an 877W ROUTER
Ethernets are VLAN1
Wireless is DOT11RADIO 0
Internet is DIALER1
I wish VLAN1 to have full access to both DIALER1 and DOT11RADIO 0 networks
I wish DOT11RADIO 0 to have limited access to EVERYWHERE (i.e. DIALER1 & VLAN1) - this is achieved by means of EXTENDED ACCESS-LIST 101 applied to Interface DOT11RADIO 0
I have this almost working, but I cannot run a TFTP server on DOT11RADIO 0 AND copy configurations from the 877W to the TFTP server. The router can see UDP PORT 69 but reply traffic seems to be blocked.
Attached is a drawing of the network, the running config and some logs of the blocked traffic when I attempt to copy to the TFTP server on DOT11RADIO 0.
If I remove EXTENDED ACCESS-LIST 101 I can copy to the TFTP server just fine. The logging shows ACL 101 is the problem. I just can't work out how get the access lists right to get TFTP working from the 877W to DOT11RADIO 0.
What could be the problem or what do I need to do.