Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACL on 2610 router

Dear Sir,

We have a hub and spoke WAN network with on central location and 7 remote location

At central location we have LAN subnet as 192.168.1.X

At all remote location we have LAN subnet as 192.168.2.X, 192.168.3.X etc..

We have a exchange server at central location.

IP for exchange server is 192.168.1.2

IP for router ethernet is 192.168.1.1

For avoiding misuse from some remote location we want to disallow some branches to access central site exchange server.

How can we configure the access-list for the same on the central end router.

We need sample config for the same.

Summary:- Out of 7 remote location we want to allow 3 branches to access 192.168.1.2 (Exchange server) and we want disallow other 4 Branches to access 192.168.1.2 (Exchange Server). We require access-list config for the above scenario.

Pls advice with sample config.

Regards

Deepak

2 REPLIES
New Member

Re: ACL on 2610 router

Hello,

There are many ways to do this.

One way is the following ( in the case you want to allow 192.168.2.x, 192.168.3.x, 192.168.4.x and deny everything else):

access-list 101 permit ip 192.168.2.0 0.0.0.255 host 192.168.1.2

access-list 101 permit ip 192.168.3.0 0.0.0.255 host 192.168.1.2

access-list 101 permit ip 192.168.4.0 0.0.0.255 host 192.168.1.2

interface FastEthernet0

ip access-group 101 out

New Member

Re: ACL on 2610 router

Dear Sir,

Thanks for the advice and config commands

98
Views
0
Helpful
2
Replies
CreatePlease to create content