need help with acl on wap321

Unanswered Question
juan_diego_rodriguez Wed, 09/19/2012 - 14:43
User Badges:

Hello,


Always remember to set a last rule on the list that allow all the rest of access that is not restricted on previous sentences. This because when you create an access list there is an implicit rule that deny all traffic if you do not change it.


For example:


Allow internet access from two specific ip address


1) Difine the IP address to allow.

Access-list # permit TCP (address1) (wildcard) any eq 80

Access-list # permit TCP (address2) (wildcard) any eq 80


2) Deny all the rest of address to access Internet

Access-list # deny TCP any any eq 80


3)allow all the rest of trafic.

Access-list # permit ip any any.


If this answer was satisfactory for you, please mark the question as Answered.

Thank you

Actions

This Discussion

Related Content