07-07-2010 12:56 PM - edited 03-06-2019 11:56 AM
When one applies an Access-list to an out interface of the ethernet connection to the LAN on a router does that cover the traffic going out to the LAN or the traffic going out of the LAN to the router?
Solved! Go to Solution.
07-07-2010 01:36 PM
John,
Here are some definitions:
When you refer to a router, these terms have these meanings.
Out—Traffic that has already been through the router and leaves the interface. The source is where it has been, on the other side of the router, and the destination is where it goes.
In—Traffic that arrives on the interface and then goes through the router. The source is where it has been and the destination is where it goes, on the other side of the router.
Inbound —If the access list is inbound, when the router receives a packet, the Cisco IOS software checks the criteria statements of the access list for a match. If the packet is permitted, the software continues to process the packet. If the packet is denied, the software discards the packet.
Outbound—If the access list is outbound, after the software receives and routes a packet to the outbound interface, the software checks the criteria statements of the access list for a match. If the packet is permitted, the software transmits the packet. If the packet is denied, the software discards the packet.
More info:
HTH
Reza
07-07-2010 10:18 PM
When one applies an
Access-list to an out interface of the ethernet connection to the LAN
on a router does that cover the traffic going out to the LAN or the
traffic going out of the LAN to the router?
Hi,
An access-list applied outbound to interface filters traffic going TO machines on that interface or segment.
An access-list applied inbound to interface filters traffic coming FROM machines on that interface or segment.
Hope to Help !!
Ganesh.H
Remember to rate the helpful post
07-07-2010 01:36 PM
John,
Here are some definitions:
When you refer to a router, these terms have these meanings.
Out—Traffic that has already been through the router and leaves the interface. The source is where it has been, on the other side of the router, and the destination is where it goes.
In—Traffic that arrives on the interface and then goes through the router. The source is where it has been and the destination is where it goes, on the other side of the router.
Inbound —If the access list is inbound, when the router receives a packet, the Cisco IOS software checks the criteria statements of the access list for a match. If the packet is permitted, the software continues to process the packet. If the packet is denied, the software discards the packet.
Outbound—If the access list is outbound, after the software receives and routes a packet to the outbound interface, the software checks the criteria statements of the access list for a match. If the packet is permitted, the software transmits the packet. If the packet is denied, the software discards the packet.
More info:
HTH
Reza
07-07-2010 10:18 PM
When one applies an
Access-list to an out interface of the ethernet connection to the LAN
on a router does that cover the traffic going out to the LAN or the
traffic going out of the LAN to the router?
Hi,
An access-list applied outbound to interface filters traffic going TO machines on that interface or segment.
An access-list applied inbound to interface filters traffic coming FROM machines on that interface or segment.
Hope to Help !!
Ganesh.H
Remember to rate the helpful post
07-08-2010 06:09 AM
Thanks for the reply. It was very helpful.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: