cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2586
Views
0
Helpful
4
Replies

access list in L3 switch

muraripadhan
Level 1
Level 1

how i will deney/access specific ip range in my network?

for example

172.16.0.0/16 is using in my network but my requrement is i have to allow only 172.16.0.0 to 172.16.2.0/16 and other ip should not work in my network.

 

Then how i will configure in cisco L3 switch.

2 Accepted Solutions

Accepted Solutions

This ACL should work for you.

ip access-list extended Test
 permit ip 172.16.0.0 0.0.253.255 any( This will match 172.16.0.0/24 and 172.16.1.0/24)
 permit ip 172.16.2.0 0.0.0.255 any

View solution in original post

Hello,

not sure if your original post is really what you want:

172.16.0.0/16

172.16.1.0/16

172.16.2.0/16

With the /16 mask, you cannot block 172.16.0.0, because that is the subnet ID. 172.16.1.0 and 172.16.2.0 would just be hosts in the subnet, to to allow just those two hosts, your access list would need to look like this:

access-list 1 permit host 172.16.1.0

access-list 1 permit host 172.16.2.0

View solution in original post

4 Replies 4

This ACL should work for you.

ip access-list extended Test
 permit ip 172.16.0.0 0.0.253.255 any( This will match 172.16.0.0/24 and 172.16.1.0/24)
 permit ip 172.16.2.0 0.0.0.255 any

Hello,

not sure if your original post is really what you want:

172.16.0.0/16

172.16.1.0/16

172.16.2.0/16

With the /16 mask, you cannot block 172.16.0.0, because that is the subnet ID. 172.16.1.0 and 172.16.2.0 would just be hosts in the subnet, to to allow just those two hosts, your access list would need to look like this:

access-list 1 permit host 172.16.1.0

access-list 1 permit host 172.16.2.0

Thanks for giving me the solution but sir my requirement is i have to allow only specific range of ip in my network and rest of ip will not work in my network.
Means
Only 172.16.0.0-172.16.2.0/ 16 this range of ip will work in my network rest ip are not work in my network.
Then how i will configure in cisco core switch

Buen día tengo este requerimiento de switch de 24 10/100/1000 MBPS, PUERTOS GIGABITS SFP MANEJO DE CAPA L3, MEMORIA FLASH 2GB ,RAM 4GB, CAPACIDAD DE CONMUTACION 68 GBPS,PROTOCOLO DE RUTEO :RIP-1,RIP-2,EIGRP,RIPPNG,CAPACIDAD DE CONMUTACION 68GBPS,INCLUYE 2 SFPS DE 10 GIGA QUE MODELO PUEDO USAR QUE ME CUMPLA CON EL REQUERIMIENTO
Review Cisco Networking for a $25 gift card