Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1442
Views
0
Helpful
1
Replies

Egress Outbound filter

kmcge004
Level 1
Level 1

‎11-12-2017 08:55 AM - edited ‎03-10-2019 12:55 AM

Screenshot (372).pngI am trying to apply egress filtering outbound in the External network. I was told the Internal network can ping over to the External network but the External network cannot ping to the Internal network. Im so confused with egress filtering. Im trying to configure the 2811 router and this how I configure the router:

access-list 101 deny icmp host 10.10.10.10 any echo-reply

access-list 101 permit ip any any

int fa0/0

ip access-group 101 out

end

Can someone point me to the right direction please? 

Labels:
0 Helpful
1 Reply 1

mikael.lahtela
Level 4
Level 4

‎11-13-2017 10:01 AM - edited ‎11-13-2017 10:03 AM

Hi,

On the interface you have inbound and outbound filter.
fa0/0 - traffic from router interface = outbound filter ->
fa0/0 <- traffic to router interface = inbound filter -

So traffic is filtered on the interface depending if the traffic is on its way our from the interface or in on the interface.
Note that your access list is denying echo-reply and not the echo packet.
Hope that helps you forward, trying to nudge you in right direction without solving your problem.

br, Micke

0 Helpful
Customers Also Viewed These Support Documents