Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
344
Views
0
Helpful
3
Replies

Why is only R3 performing the Access List?

JoshGarmonCiscoCCNA
Level 1
Level 1

‎10-10-2015 11:38 AM - edited ‎03-05-2019 02:30 AM

http://www.informit.com/library/content.aspx?b=CCNA_Practical_Studies&seqNum=76

You'll have to scroll down to the extended part.

Extended Access List

Figure 15-2 shows TWO routers R3 and R5

the scenario is to block certain types of traffic behind both routers.

However, only R3 is doing the access-lists.

This is confusing because the Rules say apply Extended ACLs closest to SOURCE

 

 

Labels:
0 Helpful
3 Replies 3

Richard Bradfield
Level 6
Level 6

‎10-10-2015 03:10 PM

The S0 interface of R3 is where the WAN traffic comes into the site. You want to control traffic to the 192.168.3.0 and the 192.168.50.0 subnets, so S0 on R3 is the obvious place to do it.

0 Helpful

JoshGarmonCiscoCCNA
Level 1
Level 1
In response to Richard Bradfield

‎10-11-2015 09:30 AM

Is S0 the "closest to the source" in this particular situation?

 

 

When you permit/deny specific kinds of traffic...does that mean FROM or TO those kinds of servers?

 

 

 

 

0 Helpful

Vinit Jain
Cisco Employee
Cisco Employee
In response to JoshGarmonCiscoCCNA

‎10-11-2015 09:52 AM

yes, based on the extended ACL, the permit/deny statements have from and to traffic which could be any device in the network. Rest i believe Richard has already explained it.

Thanks
--Vinit
0 Helpful
Customers Also Viewed These Support Documents