Hello Peter,

Thank you for your prompt reply , it works

I have even learn that I can remove some lines in the IN and OUT ACL , I will remove the one that have no matches.

ROUTER1841#sh access-lists

Standard IP access list NAT

    10 permit 192.168.0.0, wildcard bits 0.0.255.255 (146 matches)

Extended IP access list dri-acl-in

    10 permit udp any any eq domain

    20 permit udp any eq domain any (72 matches)

    30 permit tcp any any eq domain

    40 permit tcp any eq domain any

    50 permit tcp any any eq www

    60 permit tcp any eq www any (55 matches)

    70 permit tcp any any eq 443

    80 permit tcp any eq 443 any (403 matches)

    90 permit tcp any any eq pop3

    100 permit tcp any eq pop3 any (50 matches)

    110 permit tcp any any eq smtp

    120 permit tcp any eq smtp any (8 matches)

Extended IP access list dri-acl-out

    10 permit udp any any eq domain (24 matches)

    20 permit udp any eq domain any

    30 permit tcp any any eq domain

    40 permit tcp any eq domain any

    50 permit tcp any any eq www (82 matches)

    60 permit tcp any eq www any

    70 permit tcp any any eq 443 (318 matches)

    80 permit tcp any eq 443 any

    90 permit tcp any any eq pop3 (76 matches)

    100 permit tcp any eq pop3 any

    110 permit tcp any any eq smtp (13 matches)

    120 permit tcp any eq smtp any

ROUTER1841#

Best Regards and HAPPY NEW YEAR

Didier

.

Message was edited by: Didier Ribbens