Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
0
Helpful
3
Replies

ACL on 2821

imranraheel
Level 1
Level 1

‎10-11-2010 01:11 PM - edited ‎03-04-2019 10:04 AM

I want to apply an ACL on my router so that outer world would be able to access the inside hosts on some specific ports and the internal servers will reply back . Also the internal servers should be able to access the outer would on all ports without any issues .

So should i use reflex access list for this .

ip access-list extended port_allow

permit tcp any XXX.XXX.XXX.XXX XXX.XXX.XXX.XXX eq 10111 reflect create-reflex-list

permit tcp any XXX.XXX.XXX.XXX XXX.XXX.XXX.XXX  eq 10112 reflect create-reflex-list

permit icmp any any echo-reply

deny ip any any

Labels:
0 Helpful
3 Replies 3

paolo bevilacqua
Hall of Fame
Hall of Fame

‎10-11-2010 04:51 PM

You do not need reflexive ACL for that.

0 Helpful

imranraheel
Level 1
Level 1
In response to paolo bevilacqua

‎10-11-2010 05:14 PM

So you recommand me not to use reflex & if i block the inside access

, everything outbound will work fine?

0 Helpful

imranraheel
Level 1
Level 1
In response to imranraheel

‎10-11-2010 05:15 PM

Also should i mention any particular command to allo

w all outbound access

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card