取消
显示结果 
搜索替代 
您的意思是: 
cancel
4480
查看次数
8
有帮助
4
回复

在路由器7609上应用Object-group acl 其会拒绝所有流量通过

iosvip_163_com
Spotlight
Spotlight

论坛大咖们:
1、在路由器7609上应用Object-group acl 其会拒绝所有流量通过,有碰到此现象的大咖们,请给予支持和解答,为谢!
2、ACE条目在60条以内。
3、7609设备版本
Cisco IOS Software, c7600rsp72043_rp Software (c7600rsp72043_rp-ADVENTERPRISEK9-M), Version 15.5(3)S5, RELEASE SOFTWARE (fc1)
部分配置:
object-group network a_list
host 10.x.96.67
host 10.x.96.68
host 10.x.96.69
!
object-group network b_list
host x.x.31.141
host x.x.31.142
host x.x.31.143
host x.x.31.144
host x.x.31.145
host x.x.31.146
host x.x.31.147
host x.x.31.148
host x.x.31.149
host x.x.31.150
host x.x.31.151
host 10.x.212.166
ip access-list extended xx_list02
deny ip host 10.2x.106.100 any
deny ip any host 10.232.106.100
permit tcp object-group a_list object-group b_list range 950 990
permit tcp object-group a_list object-group b_list eq telnet www
permit ip any 10.2x.96.0 0.0.31.255
4 条回复4

moxiuli
Level 9
Level 9
https://blog.csdn.net/kkfloat/article/details/39803149
参考一下,或许能得到提示

Rockyw
Spotlight
Spotlight
查看一下匹配情况,看看是那条规则匹配了,再对这条规则进行修改看看。
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rockyw | If it solves your problem, please mark as answer. Thanks !

iosvip_163_com
Spotlight
Spotlight

iosvip_163_com
Spotlight
Spotlight
Rocky 发表于 2018-8-16 23:16
查看一下匹配情况,看看是那条规则匹配了,再对这条规则进行修改看看。

非常感谢!:lol
快捷链接