Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started.

New Member

ACL isn't working

The ACL apply to the Group Asyn 1 interface isn't work.

I need filter the traffic that isn't encripted that point to ip address (loopback 0).

This is the configuration:

interface Loopback0

ip address

interface Group-Async1

ip unnumbered Loopback0

ip access-group 101 in

ip nat inside

encapsulation ppp

ip tcp header-compression

no logging event link-status

async mode interactive

peer default ip address pool ippool

ppp max-bad-auth 3

ppp callback accept

ppp authentication chap pap ppp_users

group-range 33 48

crypto map empleado

access-list 101 permit esp host

access-list 101 permit udp host eq isakmp

access-list 101 permit ip

access-list 101 deny ip any host

Note that use nat inside in group asyn 1 interface.

The router is a cisco 2612, the Version is 12.2(6r)

Thanks in advace

  • Other Security Subjects
New Member

Re: ACL isn't working

Which protocol are you using for authentication? If it's AH, I don't see a permit statement corresponding to it.

New Member

Re: ACL isn't working

I have using ESP for all.

I establish the connection OK. The problem is that I can't filter the traffic point to de loopback 0. By example I need filter the Telnet request a this interface.