cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4471
Views
0
Helpful
8
Replies

Internet ACL not allowing http

Ricky S
Level 3
Level 3

Hi everyone, can you tell me why this ACL, when applied inbound to my outside interface, kills the outbound http traffic?

ip access-list extended internet_block

permit udp any eq bootps any eq bootpc

remark rfc1918 antispoofing

deny   ip host 255.255.255.255 any log

deny   ip 127.0.0.0 0.255.255.255 any log

deny   ip 10.0.0.0 0.255.255.255 any log

deny   ip 172.16.0.0 0.15.255.255 any log

deny   ip 192.168.0.0 0.0.255.255 any log

deny   ip any 10.0.0.0 0.255.255.255 log

deny   ip any 172.16.0.0 0.15.255.255 log

deny   ip any 192.168.0.0 0.0.255.255 log

remark gre tunnels permitted

permit udp any any eq isakmp

permit esp any any

permit gre any any

permit udp any any eq non500-isakmp

permit tcp any any eq www established

permit tcp any any eq 443 established

remark allow ping and traceroute responses

permit icmp any any traceroute

permit icmp any any echo-reply

deny   icmp any any redirect

deny   ip any any

!

!

interface gigabitethernet0/0

ip access-group internet_block in

!

1 Accepted Solution

Accepted Solutions