04-14-2017 08:32 AM - edited 03-12-2019 02:13 AM
I am trying to create an ACL to deny traffic from one network to anther network, but my lab assistant told me it is wrong. I am not sure what I am doing wrong.
I have a router with a computer connected to g0/0 interface with network ID 192.168.1.0/24. I need to block traffic from this network reaching 172.16.1.2/24 host. This is what I have done:
deny
permit
Can anyone please tell me what I am doing wrong?
Solved! Go to Solution.
04-14-2017 10:45 AM
Firstly that acl only blocks TCP to that specific host. If you want to block ICMP and UDP as well change "tcp" to "ip".
Secondly the acl should be applied to the gi0/0 interface in an inbound direction.
Jon
04-14-2017 10:45 AM
Firstly that acl only blocks TCP to that specific host. If you want to block ICMP and UDP as well change "tcp" to "ip".
Secondly the acl should be applied to the gi0/0 interface in an inbound direction.
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide