Cisco Support Community
Community Member

IP Access List w/ Cisco 2620 Router?

Hardware: Cisco 2620 Router

Scenario: I want to setup a block of 14 ip addresses so they can only access one certain website or ip address and they can not go anywhere else. I have been using a mask.

Here are a couple of statments that I tried, but could not get them to work.

ip access-lists extended 110

permit tcp host x.x.x.241 host x.x.112.3

deny ip host x.x.x.241 any

permit ip any any

Then on the fastethernet port and serial ports i added:

ip access-group 110 out

Saved, Rebooted and still did not work.

Can someone help me out on this?


Community Member

Re: IP Access List w/ Cisco 2620 Router?

One of the main issues is the "permit ip any any" statement but the first line of your access-list is also incorrect if I understand what your wanting to accomplish.

Example of allowing 16 addresses to hit one host but denying the rest.

permit tcp host

deny ip any any

This ACL would allow to to hit but deny everything else.

Community Member

Re: IP Access List w/ Cisco 2620 Router?

It seems that you have the wrong wildcard mask. For mask of you will need wildcard mask of not

CreatePlease to create content