i need to put an ACL for outbound on a router 806 with PPPOE/ADSL.
I try this, for example :
access-list 101 permit ip any any log
interface dialer 1
ip access-group 101 out
I remark :
1 - when I ping from my PC on inside (by 806' interface ethernet 0) to an Public adress on outside (by dialer1 on interface ethernet 1) , all is ok, I verify it with 'show access-list 101' and the ACL is well incremented.
2 -but when i make the same ping, but now directly on vty of my router to the same public adress, all is ok BUT nothing is incremented on 'show ACL 101'.
I think in this case the ACL 101 is bypassed. But I don't understand why ...
(NB : I put also the ACL 101 on interface ethernet 1 out, it's the same problem).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...