Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

access list for diff transmit/receive internet interface

SCENARIO

-router transmit (internet connection) on serial0

-router receives (internet connection) on e0 (e0 is where the public ip resides)

-the private network resides on e1 subnet.

REQUIREMENT

-restricts outgoing traffic only for http and mail

-restricts incoming traffic only for ssh to host IP_1.

please ADVISE.

THANKS

2 REPLIES
Silver

Re: access list for diff transmit/receive internet interface

You can use Extended ACL to define policy in the way you want.

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a00800a5b9a.shtml#extacls

But first, please clarify:

1. You only transmit ALL traffic on S0 (no input packets whatsoever) and receive on e0 (no output whatsoever)?

-or-

2. You have DATA traffic on S0 and management traffic on e0?

New Member

Re: access list for diff transmit/receive internet interface

no. 1 is right

thanks

208
Views
0
Helpful
2
Replies