an access-list is applied to an interface either outgoing or incoming. Example:
access-list 100 permit tcp any any eq ftp
ip access-group 100 out
This would only allow TCP traffic with destination port 21 (FTP) out of that interface (except some packets created locally by the router). There would be no limitations on incoming traffic in this example (not useful in production environments!)
It depends on your security and/or connectivity requirements how your access-lists have to look like and whether to apply them inbound or outbound. You can apply two different access-lists per interface, one inbound and one outbound.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.