09-05-2007 01:45 AM - edited 03-05-2019 06:17 PM
Hi, I'm learning CISCO at the moment and was wondering if you can help me. My 877W Router is configured with DHCP from 10.10.10.2 to 10.10.10.254 and any PC which is connected to the router can get internet access. 10.10.10.1 is the router.
My question is can someone tell me :
a. How I limit internet access so say only IP addresses 10.10.10.2, 10.10.10.3 can get internet access and no-one else can but the other clients 10.10.10.4 etc can still talk to the other PC's on the LAN.
b. How I limit internet acess by fastethernet port so say ports 1,2 and 3 can get internet access but port 4 cannot.
Running config is attached.
09-05-2007 03:25 AM
You have to modify access-list 1 like this:
access-list 1 permit 10.10.10.2
access-list 1 permit 10.10.10.3
This denies NAT translation for the other host which effectively denies them internet access.
regards,
Leo
09-05-2007 06:22 AM
thanks Leo
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide