i wanted some of the public IP address to be restricted(not to allow internet access) as some them are using the public IP address without any information, i tried the following access-list in my cisco 1700 series router, the moment i issue the command i am not able to access internet(eevn with the ip address mentioned to permit the internet traffic). any suggestion would be appreciated.
Note: in this access-list i specified only the IP address which can access the internet, bcoz these ip address are our webserver/ftp/mail etc... rest of the ip address which are not mentioned will be denied by default(if i am not wrong)
can you try to apply only ACL 101 inbound on your fastethernet0 interface and remove ACL 102 from fa0? ACL 101 will permit only hosts 188.8.131.52,.2,.3 to go outside which should serve your purpose I guess.
I don't think that there will be any need of ACL 102.
please try this out and let me know if it helps ... rate if it does ...
thanks for ur reply, my question again is, i tried applying the acl 101 inbound, but the connection gets lost. but when i say acl 101 outbound it works, but if some 1 from the internet does an ftp to my public ftp server, it sayz connected but will not ask for user name & passwd the connection gets closed, if i remove the acl it prompts for user name & passwd. any help.
i have got webserver/ftp/mailserver & Internet Gateway servers residing in my office with the public IP address, i wanted to allow only these ip address both in/out direction(reason bcoz only if i permit in/out i can do ftp & others from the internet can also do ftp to my servers), rest of the ip address should be restricted both in/out. to say in simply whatever ip address i list in the access-list should only be permitted & the rest should be restricted both way(in/out) or watt ever ip address i mention in the access-list it should be denied both in/out & rest of the ip address should be permitted both the way(in/out)
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...