Comunicados
Bem-vindo à Comunidade de Suporte da Cisco, gostaríamos de ter seus comentários.
New Member

ACL

i want to permit host (172.16.20.39/24) just http and https port in access list 100. what is configuration

Navaz       

Navaz
1 SOLUÇÃO ACEITE

Soluções aceites
Gold

Re: ACL

HI Navas,

In that case use as below

access-list 100 permit ip host 172.16.29.39 10.1.1.0 0.0.0.255 eq http
access-list 100 permit ip 
host 172.16.29.39 10.1.1.0 0.0.0.255
eq https
access-list 100 deny ip any any

Hope that helps.

Regards

Najaf

Please rate when applicable or helpful !!!

4 RESPOSTAS
Gold

Re: ACL

HI Navas,

Hope you want to allow this from all host..In that case it would be as below

access-list 100 permit ip any host 172.16.29.39 eq http
access-list 100 permit ip any host 172.16.29.39 eq https
access0list 100 deny ip any any

Finally apply the ACL on interface

int fas x/x
ip access-group 100 in/out


Hope that helps.

Regards

Najaf

Please rate when applicable or helpful !!!

New Member

ACL

in this case my source is 172.16.20.39 255.255.255.255 destination ip is 10.1.1.254/24

Navaz

Navaz
Gold

Re: ACL

HI Navas,

In that case use as below

access-list 100 permit ip host 172.16.29.39 10.1.1.0 0.0.0.255 eq http
access-list 100 permit ip 
host 172.16.29.39 10.1.1.0 0.0.0.255
eq https
access-list 100 deny ip any any

Hope that helps.

Regards

Najaf

Please rate when applicable or helpful !!!

New Member

ACL

access-list 100 permit tcp 172.16.10.38 0.0.0.1 any eq 80

access-list 100 permit tcp 172.16.10.38 0.0.0.1 any eq 443

i use this .is it right

Navaz

Navaz
312
Apresentações
0
Kudo
4
Respostas