I am trying to filter traffice through a a WAN link through a business partner, and trying to configure a reflexive access-list to allow only telnet traffic from my network to theirs.
I have created the following..
ip access-list extended pat_out
permit tcp any any eq telnet reflect pat
ip access-list extended pat_in
and then on the interface
ip access-group pat_in in
ip access-group pat_out out
However this does not seem to work. I have tried this using fixed access-lists and seems to work.