Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
405
Views
0
Helpful
2
Replies

problem with ACL on Dialer ...

lmignerey
Level 1
Level 1

‎10-09-2002 03:10 PM - edited ‎02-20-2020 09:19 PM

Hi,

i need to put an ACL for outbound on a router 806 with PPPOE/ADSL.

I try this, for example :

access-list 101 permit ip any any log

interface dialer 1

ip access-group 101 out

I remark :

1 - when I ping from my PC on inside (by 806' interface ethernet 0) to an Public adress on outside (by dialer1 on interface ethernet 1) , all is ok, I verify it with 'show access-list 101' and the ACL is well incremented.

2 -but when i make the same ping, but now directly on vty of my router to the same public adress, all is ok BUT nothing is incremented on 'show ACL 101'.

I think in this case the ACL 101 is bypassed. But I don't understand why ...

(NB : I put also the ACL 101 on interface ethernet 1 out, it's the same problem).

Thank for your help !

Regards,

Luc Mignerey

Labels:
0 Helpful
2 Replies 2

hucuncu
Level 1
Level 1

‎10-10-2002 06:31 AM

Acess-lists do not count or apply the access rules for the packets initiated by the router itself.

I hope it is the reason. Have a nicer day..

Onur DC

0 Helpful

lmignerey
Level 1
Level 1
In response to hucuncu

‎10-11-2002 02:47 AM

thanks for your help

But the interest of reflexive access-lists is very poor in this conditions.

Bye

Luc Mignerey

0 Helpful
Customers Also Viewed These Support Documents