09-04-2012 12:26 PM
I'm having some problems blocking IP blocks. I have several blocks of IP's that I want blocked. For example:
I want to block 77.0.0.0/8 from communicating with a server on my lan.
So I make a rule in the RV042 to deny all traffic from 77.0.0.0 to 77.255.255.255, source wan1, destination lan, my server's ip, time: always.
As soon as I move that rule above the traffic forwarding rules I have created, no traffic moves in or out via the wan interface. It seems to just cut off all traffic. What am I doing wrong?
09-18-2012 06:25 AM
Anyone have any suggestions at all?
09-18-2012 03:29 PM
I would recommend you to use an access list on the router like this:
first deny the access:
Access list # deny ip 77.0.0.0 (wildcard) 77.255.255.255 (wildcard)
Then do not forget to allow the access of the rest of connections as a final entry, so you do not have this problem.
Access list # permit ip any any
and finnaly to assign the th access group to the interface.
interface (serial/fast/ethernet) #/#
ip access-group # in
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide