There are two issue involved in your access-list. I believe the DENY statement is blocking your 56 network to access 64 network. I believe, in theory, this should do what you want. But it will also depend on which interface you apply the access list. I would apply at fa0/0 with access IN
I dont think you can do it with a simple list like this. You want to unlimited access for one network to the other but the other is only allowed to talk to two hosts in the first network. So how can it respond to requests from the other hosts in that network?
You need to identify the traffic down to the ports that will be used and make use of the "established" tag in the access-lists. That way the second network will be able to respond to anyone but only open connections to the two hosts that are allowed.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.