10-24-2003 02:53 PM - edited 03-09-2019 05:17 AM
can i use IP unnumbered on a serial interface that has acl's? also, what's a good acl how-to? I want to know if I can use acls in and out on the same interface.
10-24-2003 04:10 PM
Hi,
an unnumbered interface uses address from other interfaces. So in the ACL you can specify that address.
Unless you tell us what your goals are, that is very difficult to tell what ACL you are interested in.
ANyway here is a link for securing your perimeter router.
http://www.cisco.com/warp/public/707/21.html
Thanks
Nadeem
10-24-2003 04:29 PM
Thanks for the help. I wanted to provide anti-spoofing acls both in and out on the same interface. I want to filter protocols: finger, icmp, telnet, tftp, enable no small servers, no cdp, provide anti-DOS proection on the serial interface -- can you think of any more good protections for incoming traffic?
10-24-2003 09:57 PM
Hi,
If you have patience, then download and go through this document
http://nsa2.www.conxion.com/cisco/download.htm
Cisco SAFE documents are also awesome
http://www.cisco.com/en/US/partner/netsol/ns340/ns394/ns171/ns128/networking_solutions_package.html
Thanks
Nadeem
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide