Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
383
Views
0
Helpful
3
Replies

Access List question

Go to solution
john.wright
Level 3
Level 3

‎07-07-2010 12:56 PM - edited ‎03-06-2019 11:56 AM

When one applies an Access-list to an out interface of the ethernet connection to the LAN on a router does that cover the traffic going out to the LAN or the traffic going out of the LAN to the router?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎07-07-2010 01:36 PM

John,

Here are some definitions:

When you refer to a router, these terms have these meanings.

  • Out—Traffic that has already been through the router and leaves the interface. The source is where it has been, on the other side of the router, and the destination is where it goes.

  • In—Traffic that arrives on the interface and then goes through the router. The source is where it has been and the destination is where it goes, on the other side of the router.

  • Inbound —If the access list is inbound, when the router receives a packet, the Cisco IOS software checks the criteria statements of the access list for a match. If the packet is permitted, the software continues to process the packet. If the packet is denied, the software discards the packet.

  • Outbound—If the access list is outbound, after the software receives and routes a packet to the outbound interface, the software checks the criteria statements of the access list for a match. If the packet is permitted, the software transmits the packet. If the packet is denied, the software discards the packet.

More info:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00800a5b9a.shtml#sourcedefine

HTH

Reza

    View solution in original post

    0 Helpful

    Go to solution
    Ganesh Hariharan
    VIP Alumni
    VIP Alumni

    ‎07-07-2010 10:18 PM 

    When one applies an
Access-list to an out interface of the ethernet connection to the LAN
on a router does that cover the traffic going out to the LAN or the
traffic going out of the LAN to the router?

    Hi,

    An access-list applied outbound to  interface filters traffic going TO machines on that interface or segment.

    An access-list applied inbound to interface filters traffic coming FROM machines on that interface or segment.

    Hope to Help !!

    Ganesh.H

    Remember to rate the helpful post

    View solution in original post

    0 Helpful
    3 Replies 3

    Go to solution
    Reza Sharifi
    Hall of Fame
    Hall of Fame

    ‎07-07-2010 01:36 PM

    John,

    Here are some definitions:

    When you refer to a router, these terms have these meanings.

    • Out—Traffic that has already been through the router and leaves the interface. The source is where it has been, on the other side of the router, and the destination is where it goes.

    • In—Traffic that arrives on the interface and then goes through the router. The source is where it has been and the destination is where it goes, on the other side of the router.

    • Inbound —If the access list is inbound, when the router receives a packet, the Cisco IOS software checks the criteria statements of the access list for a match. If the packet is permitted, the software continues to process the packet. If the packet is denied, the software discards the packet.

    • Outbound—If the access list is outbound, after the software receives and routes a packet to the outbound interface, the software checks the criteria statements of the access list for a match. If the packet is permitted, the software transmits the packet. If the packet is denied, the software discards the packet.

    More info:

    http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00800a5b9a.shtml#sourcedefine

    HTH

    Reza

      0 Helpful

      Go to solution
      Ganesh Hariharan
      VIP Alumni
      VIP Alumni

      ‎07-07-2010 10:18 PM 

      When one applies an
Access-list to an out interface of the ethernet connection to the LAN
on a router does that cover the traffic going out to the LAN or the
traffic going out of the LAN to the router?

      Hi,

      An access-list applied outbound to  interface filters traffic going TO machines on that interface or segment.

      An access-list applied inbound to interface filters traffic coming FROM machines on that interface or segment.

      Hope to Help !!

      Ganesh.H

      Remember to rate the helpful post

      0 Helpful

      Go to solution
      john.wright
      Level 3
      Level 3

      ‎07-08-2010 06:09 AM

      Thanks for the reply. It was very helpful.

      0 Helpful
      Getting Started

      Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

      Customers Also Viewed These Support Documents
      Review Cisco Networking products for a $25 gift card