Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
761
Views
0
Helpful
1
Replies

ACCESS LIST CONFIGURATION

Go to solution
muarip6@gmail.com
Level 1
Level 1

‎11-12-2017 09:05 AM - edited ‎03-08-2019 12:42 PM

Hi dears

My router id is 192.168.1.1/24

and my network is 192.168.1.0/24

and other division 

router Id is 192.168.2.1/24

and network is 192.168.2.0/24

My requrement is 

I want to allow only two host 192.168.2.10/24 and 192.168.2.11/24 to my network(192.168.1.0)

and other host will be deney

how i will configure in my router(192.168.1.1)

 

Please help me

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio E. Moisa
VIP Alumni
VIP Alumni

‎11-12-2017 06:29 PM - edited ‎11-12-2017 06:35 PM

Hi

ip access-list extended FILTER

permit host 192.168.2.10 192.168.1.0 0.0.0.255

permit host 192.168.2.11 192.168.1.0 0.0.0.255

deny host 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255

permit ip any any

 

** It will be applied in inbound direction. example:

interface g0/0

ip access-group FILTER in

 

I don't know your topology but the direction to be applied depends of it are these networks on the same router or on different ones?

 

Extended ACL sintaxis:

permit <protocol> permit/deny <source><wildcard><port> <destination><wildcard><port>

The port can be omitted if it is dynamic otherwise you must specify it using "eq" or a range "range".

 

A suggestion is the extended ACL are applied close to the source. 

 

:-)

 




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Julio E. Moisa
VIP Alumni
VIP Alumni

‎11-12-2017 06:29 PM - edited ‎11-12-2017 06:35 PM

Hi

ip access-list extended FILTER

permit host 192.168.2.10 192.168.1.0 0.0.0.255

permit host 192.168.2.11 192.168.1.0 0.0.0.255

deny host 192.168.2.0 0.0.0.255 192.168.1.0 0.0.0.255

permit ip any any

 

** It will be applied in inbound direction. example:

interface g0/0

ip access-group FILTER in

 

I don't know your topology but the direction to be applied depends of it are these networks on the same router or on different ones?

 

Extended ACL sintaxis:

permit <protocol> permit/deny <source><wildcard><port> <destination><wildcard><port>

The port can be omitted if it is dynamic otherwise you must specify it using "eq" or a range "range".

 

A suggestion is the extended ACL are applied close to the source. 

 

:-)

 




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<
0 Helpful
Customers Also Viewed These Support Documents