Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
233
Views
0
Helpful
1
Replies

ip access-control on a flat network

pries
Level 1
Level 1

‎08-27-2002 09:15 AM - edited ‎03-09-2019 12:04 AM

I have an odd situation. There are 200 clients on a /24 subnet that point to a router for their def-gateway. These clients and the router attach to a flat switched network. I need to provide layer-3 access control between the router and clients but I CAN NOT READDRESS ANYTHING. I can't re-IP the local router interface or change the client's IP or gateway. I'm trying to think of a way to do the ACL. I've thought of a 2-ethernet router stuck behind the router in bridging mode but I can't apply layer-3 ACLs on the bridge interfaces. Any solution with a Pix? I'm thinking along the lines of DNAT or NAT0 but can't make it work in my head...

Labels:
0 Helpful
1 Reply 1

pgolding
Level 1
Level 1

‎09-02-2002 09:34 PM

what about just blocking the hosts you dont want permitted with a normal access list inbound on the routers interface - wont this do what you want?

0 Helpful
Customers Also Viewed These Support Documents