Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
643
Views
5
Helpful
4
Replies

Help with an Access-List please - New to the forum

K_Han
Level 1
Level 1

‎05-13-2019 04:56 AM

Hello All, Brand new to this discussion forum and have arrived here requiring a bit of assistance.

 

I've inherited a Private Network and am getting the feel for it, however I hope you can give me a bit of guidance.

 

I have an old server Z.Z.Z.Z

I need to isolate this server on our network, only allowing a small number of Workstations access to Z.Z.Z.Z ,but also allow the Workstation access to everywhere else.I also need to restrict Z.Z.Z.Z's access to only those Workstations.

 

Ive been going round in circles, not having compiled an ACL for over 10years.

 

Can anyone give me the magic formula to set up and effective and tight ACL.

Thanks

K

 

Labels:
0 Helpful
4 Replies 4

Dennis Mink
VIP Alumni
VIP Alumni

‎05-13-2019 05:00 AM

No silver bullet. But here is the logic:

Of your acl:

 

 

1 permit hosts to server

2 deny any to server

3 permit any any ( or whatver else is needed)

Please remember to rate useful posts, by clicking on the stars below.

K_Han
Level 1
Level 1
In response to Dennis Mink

‎05-13-2019 05:23 AM

Thanks Dennis and hello Paul,

 

The server is running old MS OS and we must isolate it within our network allowing only a few Workstation access to it.

 

Thanks

K

0 Helpful

paul driver
VIP
VIP

‎05-13-2019 05:04 AM

Hello

@K_Han wrote:

I have an old server Z.Z.Z.Z

I need to isolate this server on our network, only allowing a small number of Workstations access to Z.Z.Z.Z ,but also allow the Workstation access to everywhere else.I also need to restrict Z.Z.Z.Z's access to only those Workstations.

Can anyone give me the magic formula to set up and effective and tight ACL.

Thanks

K

 

What does the server serve, what is its role?

 

 

 

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

K_Han
Level 1
Level 1
In response to paul driver

‎05-13-2019 05:40 AM

THIS IS WHAT IVE GOT SO FAR:-

access-list 100 remark ########
access-list 100 permit ip A.A.A.A 0.0.0.0 host Z.Z.Z.Z
access-list 100 permit ip B.B.B.B 0.0.0.0 host Z.Z.Z.Z
access-list 100 permit ip C.C.C.C 0.0.0.0 host Z.Z.Z.Z
access-list 100 deny IP any host Z.Z.Z.Z
access-list 100 permit any any

Any good?
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card