I am very frustrated today with the extended control list , here is the topology in the diagram below , i want that the pc2 which has a ip
of 192.168.40.2 /24 cant ping the router 1 interfaces to accomplish this, i configure Router 1 with the acl of
access-list 102 deny icmp any host 192.168.40.2
access-list 102 permit ip any any
and put that acl on s1/1 interface
ip address 192.168.20.1 255.255.255.0
ip access-group 102 in
serial restart-delay 0
clock rate 64000
after implement this configuration the pc 2(192.168.40.2)can still ping the router 1 , but pc2 (192.168.40.2)cant the the router2 s1/0 interface which has a ip address 192.168.10.2 .
i dont know what wrong with my acl configuration i know u guys can help me.
Please replay me soon