Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-list Question

Hi,

if I have an access-list here

access-list 101 deny tcp 63.36.9.0 0.0.0.255 any eq 80

do I need to apply to interface s0 port?

Can you tell me what command syntax to do?

thanks again

4 REPLIES
New Member

Re: Access-list Question

Hi,

You can appy it with

(config-if)# ip access-group 101 [in | out]

depending on where the traffic is coming

from or going to.

Jacques

New Member

Re: Access-list Question

... also ...

- remember the implicit deny any statement -

add the following line to your ACL to permit remaining traffic (NB: there should always be at least a permit statement in an ACL):

access-list 101 permit ip any any

New Member

Re: Access-list Question

Is this for filtering inbound or outbound traffic?

!in bound traffic

int s0

ip access-group 101 in

!out bound traffic

int s0

ip access-group 101 out

New Member

Re: Access-list Question

thank you very much for all of you to help me here.

I got it. thanks again.

This is a great forum and many good expertise people here.

96
Views
0
Helpful
4
Replies
CreatePlease to create content