cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
255
Views
0
Helpful
4
Replies

access lists

carl_townshend
Frequent Contributor
Frequent Contributor

Hi all, with access lists, say if I have a pc on a network 172.19.51.1/24 and the other on 172.19.52.1/24, If I want one pc to see the other, but only one way, is this possible ?

4 Replies 4

carl_townshend
Frequent Contributor
Frequent Contributor

can anyone help ?

bjw
Enthusiast
Enthusiast

Carl,

When you say 1 PC should see the other, and not vice versa, what are you exactly looking to do?

Is this is at the browser level, like see local drives etc? Or is this application level? If you're in a M$WIN enviornment there are permissions and access level security that would limit visibility/access.

As far as access lists go, you've got to be careful. TCP connections for example, require 2-way communication. Blind 1-way ACLs might not get the desired results.

carl_townshend
Frequent Contributor
Frequent Contributor

Hi thanks for the reply, yes I was thinking of a 1 way ACL, ie if I ping a machine, I guess the echo reply will be blocked ?

g.watt
Beginner
Beginner

The access-lsit to do this is below

conf t

access-list 101 permit ip host 172.19.51.1 host 172.19.52.1

access list 102 deny ip host 172.19.52.1 host 172.19.51.1

int f0/1

ip access-group 101 out

ip access-group 102 in

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers