Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
358
Views
5
Helpful
1
Replies

Configure AAA on a router - Extended ACLs

bensteele17
Level 1
Level 1

‎09-27-2021 12:48 AM

How do I write a named extended ACL which will allow for traffic between a DNS from a LAN (IP address) to a DNS server at (IP address), ping from a host PC (IP address) to any destination and allow for telnet packets from a telnet server with any source address going to any destination? calvindude spain

MMD9w.png

 

Labels:
1 Reply 1

AnwarJutt98
Level 1
Level 1

‎09-27-2021 12:51 AM

allow for traffic between a DNS from a LAN (IP address) to a DNS server at (IP address)

permit udp <LANIPaddress> <LANIPwildcard> <DNSIPaddress> 0.0.0.0 eq 53
permit tcp <LANIPaddress> <LANIPwildcard> <DNSIPaddress> 0.0.0.0 eq 53

ping from a host PC (IP address) to any destination 

permit imcp <hostPCaddress> 0.0.0.0 any echo

allow for telnet packets from a telnet server with any source address going to any destination calvindude russia

permit tcp any eq 23 any

Depending on where exactly you apply the rules, you might also require ACL rules for their reverse directions. Don't forget that an ACL denies/filters everything without an explicit permit.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card