Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
257
Views
0
Helpful
2
Replies

ACL Help

jjwong2000
Level 1
Level 1

‎09-18-2003 08:58 PM - edited ‎03-02-2019 10:27 AM

What will be the ACL on the router looks like if I want to deny anyone trying to ping outside from inside/LAN? (Permit ping from Outside to inside/LAN). Please HELP!

Labels:
0 Helpful
2 Replies 2

thisisshanky
Level 11
Level 11

‎09-18-2003 09:53 PM

Why would you want to let pings to be blocked from inside to be outside, and enable pings from outside to inside ?

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful

jolmo
Level 4
Level 4

‎09-18-2003 10:49 PM

Try this:

access-list 101 deny icmp any any echo

and apply to LAN/inside interface of your router:

int e0

ip access-group 101 in

You can also change the first 'any' in access-list for your LAN address range:

access-list 101 deny icmp A.B.C.0 0.0.0.255 any echo

Anyway, as thisisshanky says, you still let your inside LAN hosts to reply pings from outside to inside. If you also want to deny this just add:

access-list 101 deny icmp any any echo-reply

Hope this helps

0 Helpful
Customers Also Viewed These Support Documents