Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Simple ACL

I need to create an ACL that will allow just telnet in to a specific ip address.

All other traffic in will be denied.

The ACL will be applied to an ISDN interface.

Whats the best/tidiest way to do this.

Thanks,

Padraig

1 REPLY
Gold

Re: Simple ACL

Assuming you're talking about the specific IP address being the Telnet server, you could use something like:

access-list 120 permit tcp any host your.specific.ip.address eq telnet

access-list 120 deny ip any any log

(Note: the last line there makes explicit the "implicit deny all" at the end of each ACL, and logs the violations to the console or syslog server if they're enabled.)

Also assuming that the Telnet clients are coming in via the ISDN interface to get to the server, apply the above ACL to the interface using the command:

ip access-group 120 in

92
Views
0
Helpful
1
Replies