Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
284
Views
0
Helpful
1
Replies

Access list help

stephenp81
Level 1
Level 1

‎04-10-2011 03:26 AM - edited ‎03-04-2019 12:02 PM

Hi Everyone, first post.

I looking for a solution to a problem im having with access lists, i have no experience with them.Heres what i need if its not too much trouble  I have a  LAN with net address 192.168.1.0 attached to router alpha 192.168.1.1 and i want to block it from being able to access my web server at address 192.168.2.150 attached to router delta 192.168.2.1 but allow all other traffic.Iv been trying various ways but always end up blocking everything,can someone tell me the proper command please.  

Also users attached to another lan on network 192.168.3.0 are only allowed  www access to the Internet and i need appropriate extended access lists to control the traffic.the gateway router is 192.168.3.1 can someone help me with this also.Thanks in advance for any help.

Labels:
0 Helpful
1 Reply 1

Collin Clark
VIP Alumni
VIP Alumni

‎04-10-2011 04:38 AM

On the Alpha router-

ip access-list extended block_www

deny tcp 192.168.1.0 255.255.255.0 host 192.168.2.150 eq 80

deny tcp 192.168.1.0 255.255.255.0 host 192.168.2.150 eq 443

permit ip any any

Apply this ACL to the interface closest to Delta (but on the Alpha router). For example-

interface fa0/1

ip access-group block_www out

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card