09-17-2009 05:05 PM - edited 03-06-2019 07:46 AM
Hi, I have been configuring access-list on a 2811 router to deny all traffic except TFTP. Right now, only the router who's IP adresse are in the ACL, can copy their running-config to the TFTP server. However, the router that is directly connected to the TFTP server, and on which interface the ACL is placed out, is enable to copy it's own running-config, even thow the ACL is not allowing his IP address (only those from the other routers in the network). Look like the routers is not passing it's own traffic in the ACL ?? Is thi possible ??.
09-17-2009 05:47 PM
Can you post a network diagram and the config please?
09-17-2009 06:46 PM
09-20-2009 08:29 PM
Just a test, but remove permit ip any any.
Have you tried using ip access-group TFTP in?
01-11-2010 03:44 AM
Hi,
Configure ip access-group TFTP in in your interface and then check and share your results !!
Regards
Ganesh.H
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide