Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1065
Views
0
Helpful
2
Replies

Where to place this extended ACL?

lochi_fernando
Level 1
Level 1

‎05-15-2010 06:16 AM - edited ‎03-04-2019 08:29 AM

hi,


i need to create an extended access list to deny one host and allow other hosts to browse internet. All are connected at router's fa0/0 interface. where should be the proper place to apply the ACL? Fa0/0 inbound or as outbound to the proper Serial interface?

Labels:
0 Helpful
2 Replies 2

Jennifer Halim
Cisco Employee
Cisco Employee

‎05-15-2010 06:21 AM

Inbound to fa0/0 if all your internal networks are connected to fa0/0.

Pls make sure that you configure the deny statement first for the host that you would like to block, then "permit ip any any" statement after that.

Hope that helps.

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎05-15-2010 07:43 AM 

hi,

i need to create an extended access list to deny one host and allow other hosts to browse internet. All are connected at router's fa0/0 interface. where should be the proper place to apply the ACL? Fa0/0 inbound or as outbound to the proper Serial interface?

As per the basics of ACL place the acl to close to the source and as suggedted place in direction in Fa0/0.

First statement should be deny one and second one should be permit ip any one.

Hope to Help !!

Ganesh.H

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card