Hello @chueymtz ,
what are the purposes of the posted ACLs ?
access-list 50 is a standard ACL
Access-list 101 and 102 are extended ACLs but they don't look as ACL used for NAT because the subnets appear in the destination field.
>> The issue now is that anything that is on the 10.76.0.0 network is unable to get online, the rest is working correctly as 172.16.x.x does not have internet anyways. This is my current acl that was working with eigrp and works with eigrp if i remove ospf:
so my guess is that ACL 50 might be used by NAT or for performing PBR.
Access-list 101 and 102 look like ACLs appiled inbound on interfaces towards the internet.
ACL 101 applied inbound on an interface to Internet. ACL 102 applied may be applied inbound to some other interface.
Also it is important to know what devices are involved, what devices do NAT, if there are Stateful Firewalls before the internet access for example the issue can be that traffic coming the FW when EIGRP is enabled hits interface A and traffic coming to the FW when OSPF is enabled hits interface B.
The FW needs security rules to accept traffic on interface A and on interface B, the rules for interface B can be different and ths can cause the issue.
I'm doing just an example.
You should provide more details and a network diagram to get better help. The issue can be caused by another device and it not related to moving from EIGRP to OSPF.
Edit:
starting from of one the affected subnets like 10.76.2.0/23 I would suggest the following:
traceroute to 8.8.8.8 when using EIGRP and ping to 8.8.8.8 works
then traceroute to 8.8.8.8 from subnet 10.76.2.0/23 when using OSPF
then you compare the IP next-hops in the traceroute and look for any difference in the first IP hops
Hope to help
Giuseppe
