Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-list

Hello,

I have a question about access list. I would like to allow only this network 64.18.0.0 mask 255.255.240.0 to relay smtp message to our router. How can I do it? Thanks

Allow This >>>>64.18.0.0 mask 255.255.240.0

Our router IP is 172.16.20.10

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Access-list

it is denying the any other source with the any ip addreess SNMP request for the destination address of 172.16.20.10...

so only the subnet or the network which is allowed in the first statment with the permit key work will only interact with the 172.16.20.10 for SNMP all other subnet will be denied...

regards

Devang

3 REPLIES
Hall of Fame Super Blue

Re: Access-list

Hi

access-list SMTP permit tcp 64.18.0.0 0.0.15.255 host 172.16.20.10 eq 25

access-list SMTP deny tcp any host 172.16.20.10 eq 25

Apply the access-list inbound on the router interface.

Those two lines will do what you ask but be aware that there is an implicit deny at the end of any access-list so at the very least you need

access-list SMTP permit ip any any

HTH

Jon

New Member

Re: Access-list

Jon, I was curious what is the access-list SMTP deny tcp any host 172.16.20.10 eq 25 is for? Thanks

Re: Access-list

it is denying the any other source with the any ip addreess SNMP request for the destination address of 172.16.20.10...

so only the subnet or the network which is allowed in the first statment with the permit key work will only interact with the 172.16.20.10 for SNMP all other subnet will be denied...

regards

Devang

121
Views
5
Helpful
3
Replies
CreatePlease to create content