Re: access lists

carl_townshend · ‎02-23-2006

Can I have 1 access list applied to 2 serial interfaces ?

dnewell24 · ‎02-23-2006

Yes, one ACL can be applied to multiple interfaces.

Additional note, one incoming and outoing ACL per protocol can be applied to a interface.

carl_townshend · ‎02-24-2006

in the majority of cases do you normally have 1 list for in and 1 list for out ?

mwandu · ‎02-24-2006

Mostly put as 1 access-list per protocol per interface per direction.

so that mean 1 IP access-list in and out per interface, in the same case for IPX.

carl_townshend · ‎02-24-2006

so that would be say

int s0 ip access-group 101 in

int e0 ip access group 102 out

dnewell24 · ‎02-24-2006

Correct! You can also apply inbound and outbound ACLs to the same interface.

Interface Serial0

ip access-group 101 in

ip access-group 102 out

As stated earlier, one protocol per interface per direction. ACLs are fairly flexible and have multiple uses. How you implement ACL, determining the interface, protocol, and direction are all derived from system requirements.

jc.cisse · ‎02-24-2006

Yes you can.