11-17-2022 06:33 PM
NAT and ACL
I was using not using ACL in my router before and IP NAT OUTSIDE was configured previously, after I configured ACL in the ethernet interface the user PC cannot to connect to internet
Can someone help me explain what are the possible reasons for this issue?
11-17-2022 11:40 PM
config ACL prevent any traffic back to your host
can you share the config ??
11-19-2022 09:32 PM
interface config
Router(config)#int gi0/0/0
#ip add x.x.x.10 255.255.255.252
#speed 1000
#no cdp enable
#no negotiation auto
#ip access-group General in
11-19-2022 09:33 PM
ACL deny part
ip access-list extended General
deny ip host 255.255.255.255 any
deny ip host 0.0.0.0 any
deny ip y.0.0.0 0.255.255.255 any
deny ip z.z.0.0 0.0.240.255 any
deny ip b.c.0.0. 0.0.255.255 any
deny ip d.0.0.0 0.0.3.255 any
11-19-2022 10:24 PM
Your host need to send traffic to 8.8.8.8 and 8.8.8.8 reply, sure this acl will drop it.
Do show access-list, you will see many match for first two line of acl.
11-20-2022 01:58 AM
Hello,
post the full current running configuration of your router (sh run)...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide