I'm creating an access list where I "deny ip" to an entire subnet. However the "...1" address on that denied subnet is my next-hop router out to the Internet. (this is the way I want it since that router is not under my control). Will I still be able to get "out" to the Internet? All two routers should need to pass traffic are the MAC & IP addresses in the ARP table, and I'm pretty sure ARP is "below" the ip layer so both routers SHOULD have each other in their ARP table. Is ARP considered part of the "deny ip"? will the untrusted router show up in my router's ARP table? I know I won't be able to PING or Telnet to that router and visa-versa, but that's OK and what I want... but traffic that does not have a source or destination IP of the router's subnet should be able to pass, right?
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...