09-14-2004 12:40 PM - edited 03-02-2019 06:28 PM
Hi, Friends
How I know to wich access-group it belongs to each serial interface in the cisco 3600 model?
Thanks
fabian
09-14-2004 01:24 PM
Hello,
to see which access lists is configured on which interface, use the command:
show ip interface
The output should be similar to this, check for the lines:
-->Outgoing access list is not set
-->Inbound access list is 101
Ethernet0 is up, line protocol is up
Internet address is 135.13.20.1/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is 101
Proxy ARP is enabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is disabled
IP Flow switching is disabled
IP CEF switching is disabled
IP Feature Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled
BGP Policy Mapping is disabled
HTH,
Georg
09-15-2004 06:47 PM
Thanks Georg
I did the instructions and the result was these
Outgoing access list is not set
Inbound access list is not set
Anyway when I up the ACL 101 the rules are aplying, do you Know Why? or
09-15-2004 06:56 PM
Sorry the messge was cuting
I did the instructions and the resluts was (see bellow)
Outgoing access list is not set
Inbound access list is not set
In both serial interfaces are equal,
do you know why the acl 101 are applying?
or how I can assure that the rules are applying in each interface or in only one?
Thanks
Fabian Barrera
09-15-2004 11:48 PM
hi
the o/p which u hve pasted tells tht ACLs arent applied on both the directions.i hope u hve already created some ACL statements under 101 if yes then u need to apply under the serial interface config like this ...
config t
inter ser 0/0
ip access-group 101 in
ip access-group 101 out
then those ACL statements created would hve an effect on ur incoming and outgoing traffic going via that particular serial interface.
u can monitor the matches once after u apply thme under the interface by using
show ip access-lists 101
regds
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide