I have inbound ACL & an inspect command on my internet interface. Since migrating to 12.4(24)T I can no longer access the web & FTP servers. My current workaround was remove ACL 101. This worked fine in earlier IOS versions. How can I limit inbound www & FTP traffic to only 60.x.x.x?
!
interface Dialer0
description *** Internet ***
ip address negotiated
ip access-group 101 in
ip inspect FW_CBAC out
!
ip nat inside source list 100 interface Dialer0 overload
ip nat inside source static tcp 172.16.100.1 21 interface Dialer0 21
ip nat inside source static tcp 172.16.100.1 80 interface Dialer0 80
!
access-list 101 remark *** Inbound Internet traffic ***
access-list 101 permit ip 60.x.x.x 0.0.0.31 any