ACL question

Answered Question
Apr 12th, 2010

Hi all,

I have one Extended Access list question to ask

if we have 2 pc with ip 5.1.1.8/24  and 5.1.1.10 /24  and we apply this acl on ethernet interface of router

with ip access-group 101 in

here  is acl

access-list 101 deny tcp 5.1.1.8 0.0.0.3 any eq 80

access-list permit ip any any

here we are blocking the internet access for users

my question is are we blocking the single user or all users in the 5.1.1.0 network?

i know when we want to deny single user we can use host or 0.0.0.0  as wilcard masks.

thanks

mahesh

I have this problem too.
0 votes
Correct Answer by Jon Marshall about 6 years 7 months ago

mahesh18 wrote:

Hi all,

I have one Extended Access list question to ask

if we have 2 pc with ip 5.1.1.8/24  and 5.1.1.10 /24  and we apply this acl on ethernet interface of router

with ip access-group 101 in

here  is acl

access-list 101 deny tcp 5.1.1.8 0.0.0.3 any eq 80

access-list permit ip any any

here we are blocking the internet access for users

my question is are we blocking the single user or all users in the 5.1.1.0 network?

i know when we want to deny single user we can use host or 0.0.0.0  as wilcard masks.

thanks

mahesh

Mahesh

5.1.1.8 0.0.0.3 = hosts 5.1.1.9, 5.1.1.10 & 5.5.1.11

Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jon Marshall Mon, 04/12/2010 - 05:51

mahesh18 wrote:

Hi all,

I have one Extended Access list question to ask

if we have 2 pc with ip 5.1.1.8/24  and 5.1.1.10 /24  and we apply this acl on ethernet interface of router

with ip access-group 101 in

here  is acl

access-list 101 deny tcp 5.1.1.8 0.0.0.3 any eq 80

access-list permit ip any any

here we are blocking the internet access for users

my question is are we blocking the single user or all users in the 5.1.1.0 network?

i know when we want to deny single user we can use host or 0.0.0.0  as wilcard masks.

thanks

mahesh

Mahesh

5.1.1.8 0.0.0.3 = hosts 5.1.1.9, 5.1.1.10 & 5.5.1.11

Jon

Actions

This Discussion