I want to deny this IP range

                10.25.0.1 – 10.25.0.255

                10.25.1.1 – 10.25.1.255

Permit only 1 host

                10.25.7.136  255.255.255.192

Using access-list.

( Current configuration  )

ip nat inside source list 101 interface Dialer1 overload

ip route 0.0.0.0 0.0.0.0 Dialer1

ip route 10.25.0.0 255.255.0.0 192.168.2.1

access-list 101 permit ip 10.25.0.0 0.0.255.255 any