Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
986
Views
0
Helpful
2
Replies

Where to place this extended ACL?

lochi_fernando
Beginner
Beginner

‎05-15-2010 06:16 AM - edited ‎03-04-2019 08:29 AM

hi,


i need to create an extended access list to deny one host and allow other hosts to browse internet. All are connected at router's fa0/0 interface. where should be the proper place to apply the ACL? Fa0/0 inbound or as outbound to the proper Serial interface?

Labels:
0 Helpful
2 Replies 2

Jennifer Halim
Cisco Employee
Cisco Employee

‎05-15-2010 06:21 AM

Inbound to fa0/0 if all your internal networks are connected to fa0/0.

Pls make sure that you configure the deny statement first for the host that you would like to block, then "permit ip any any" statement after that.

Hope that helps.

0 Helpful

Ganesh Hariharan
Advisor
Advisor

‎05-15-2010 07:43 AM 

hi,

i need to create an extended access list to deny one host and allow other hosts to browse internet. All are connected at router's fa0/0 interface. where should be the proper place to apply the ACL? Fa0/0 inbound or as outbound to the proper Serial interface?

As per the basics of ACL place the acl to close to the source and as suggedted place in direction in Fa0/0.

First statement should be deny one and second one should be permit ip any one.

Hope to Help !!

Ganesh.H

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents