Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

how does an access list work -

How does an access list work. Do I need to place an access list to allow the return packets at the ingress interfaces.

Local server ------(E0) local router (S0) ---------(S0) local router (E0) ------Remote server

----------HTTP traffic --> <----------- ping traffic

If the local server trying to access the remote server through the router by using HTTP traffic.

As well the remote server trying to ping the local server.

Am I right to have access list on the local router s0 with

Access list 100 permit icmp <remote server> <local server>

Access list 100 deny ip any any

#local router s0# IP access-group 100 in

1 REPLY
New Member

Re: how does an access list work -

*** Continue from previous post.***

I also have access list on the remote server s0 with

Access list 101 permit tcp eq www

Access list 101 deny ip any any

#Remote router s0# IP access-group 101 in

My question is do I need to have an access-list to permit the return packet at either end of the s0 interfaces. For example:

at the local router:

Access list 100 permit icmp

Access list 100 permit tcp eq www

Access list 100 deny ip any any

#local router s0# IP access-group 100 in

103
Views
0
Helpful
1
Replies