Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1036
Views
0
Helpful
2
Replies

ACL in/out

Go to solution
chinpohpang851
Level 1
Level 1

‎09-10-2019 10:45 PM

using figure below, if I apply access-group <> in at interface gi0/0 which direction will router filter A or B?

acl.png

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎09-10-2019 11:49 PM

Hi there,

The ACL will filter in direction A.

 

cheers,

Seb.

View solution in original post

0 Helpful

Go to solution
GRANT3779
Spotlight
Spotlight

‎09-11-2019 12:48 AM

It will take action in the direction of LAN to WAN (A).

 

Way I always remembered when I first started out - Picture yourself sitting at the interface in question facing the network it connects to.

 

Traffic coming IN towards your face would be matched against an Inbound access List.

 

Traffic coming from behind you (e.g traffic from other interfaces on the device) to then be sent out the Interface you are sitting at will be matched against an Outbound Access List.

 

In your case below.

 

You are sitting on Interface A looking out at the LAN. Traffic from the LAN comes towards you (Matches Inbound ACL).

If traffic were to come from the WAN to a device in the LAN - It would come from behind you, to then be forwarded Out towards the LAN.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Seb Rupik
VIP Alumni
VIP Alumni

‎09-10-2019 11:49 PM

Hi there,

The ACL will filter in direction A.

 

cheers,

Seb.

0 Helpful

Go to solution
GRANT3779
Spotlight
Spotlight

‎09-11-2019 12:48 AM

It will take action in the direction of LAN to WAN (A).

 

Way I always remembered when I first started out - Picture yourself sitting at the interface in question facing the network it connects to.

 

Traffic coming IN towards your face would be matched against an Inbound access List.

 

Traffic coming from behind you (e.g traffic from other interfaces on the device) to then be sent out the Interface you are sitting at will be matched against an Outbound Access List.

 

In your case below.

 

You are sitting on Interface A looking out at the LAN. Traffic from the LAN comes towards you (Matches Inbound ACL).

If traffic were to come from the WAN to a device in the LAN - It would come from behind you, to then be forwarded Out towards the LAN.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card