Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

permit certain IPs

Can someone tell me how to setup the ability to only allow a certain network to access one IP address.

I have a Cisco 3640 with two ethernet interfaces. I want the network on ethernet 2 (10.30.30.0) to only be able to access one IP address on ethernet 1 (10.20.20.20) via telnet.

It is running IOS 12.0(7).

Thanks,

Scott

3 REPLIES
New Member

Re: permit certain IPs

try

first

ip access-list 101 permit tcp 10.30.30.0 255.255.255.0 host 10.20.20.20 255.255.255.0 eq telnet

ip access-list 101 permit ip any any

then

int yourEthernet1

ip access-group 101 in

Anonymous
N/A

Re: permit certain IPs

Hi,

create access-list

access-list 101 permit 10.30.30.0 0.0.0.255 host 10.20.20.20 eq 21 ! permit telnet

access-list 101 deny ip 10.30.30.0 0.0.0.255 10.20.20.0 0.0.0.255 ! deny all other from 10.30.30.0

access-list 101 permit ip any any ! permit all for the rest

int eth1

access-group 101 out

jh

Anonymous
N/A

Re: permit certain IPs

sorry, typo: must be ... eq 23

100
Views
0
Helpful
3
Replies
CreatePlease to create content