08-24-2008 12:50 AM - edited 03-03-2019 11:14 PM
Hi,
Our INTERNET router is getting hits from a public IP on a router and would like to block that IP.
Interface E0 ( Public )
Interface FE0/1 ( LAN )
IP nat pool Internet x.x.x.x x.x.x.x netmask 255.255.255.240
access-list 10 permit 192.168.1.100 ( This is Cache-Server )
How do I block this IP...
08-24-2008 02:09 AM
If you want to block the IP A.B.C.D to reach your NW, then apply this ACL
access-list 101 deny ip host A.B.C.D any
access-list 101 permit ip any any
int E0
ip access-group 101 in
-------------------------
But again in this example I have mentioned "permit ip any any" after denying the IP A.B.C.D., which is not safe.
So I would suggest to allow only interseting traffic in place of permitting ANY.
08-24-2008 02:37 AM
If I want to allow only ISP Proxy address with port 8080.
Our Cache box only need to connect to ISP Proxy.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide