Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1101
Views
0
Helpful
1
Replies

HSRP ACL

vinoth.kumar
Level 1
Level 1

‎10-03-2009 04:56 AM - edited ‎03-04-2019 06:14 AM

HI i have configured HSRP between the two router and all HSRP states are working fine

once i applied and access group on the interface for the incoming traffic now HSRP states went to Active on boths side

interface FastEthernet2/1

ip address XX.90.225.XX 255.255.255.240

ip access-group nat_out in

standby 20 ip XX.90.225.XX

ip nat outside

duplex auto

speed auto

no shut

exit

ip access-list extended nat_out

permit tcp any host XX.90.225.XX eq 5007

permit tcp any host XX.90.225.XX eq www

permit tcp any host XX.90.225.XX eq 443

can i know how i can allow the hello packet to communiacte between the interface from both router

i tried like

permit ip host 224.0.0.2 any

permit udp any eq 1985 any eq 1985

can anyone suggest

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎10-03-2009 06:44 AM

Hello Vinoth,

you need a line like

permit udp XX.90.225.0 0.0.0.15 host 224.0.0.2 eq 1985

hellos are sent with a destination of 224.0.0.2 that being a multicast can never be a source of a packet

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card