Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
444
Views
0
Helpful
0
Replies

Object-group Access control list

newbie_08
Level 1
Level 1

‎11-10-2021 06:31 AM - edited ‎11-10-2021 06:33 AM

Hi there,

 I need to implement ACL in router using object group method. The scenario is host(1.1.1.1) send images to 3 servers ( 2.2.2.2,3.3.3.3, 4.4.4.4) via tcp port 3320,104,2104 and the host retrieve data from the server via same port.

Appreciate your advise on this on how to implement.Please advice below config are correct

object-group network ACL_device
description device
host 1.1.1.1
!
object-group service server_Port
description Service Port
tcp eq 3320
tcp eq 104
tcp eq 2104
!

object-group network ACL_server
description server
host 2.2.2.2
host 3.3.3.3
host 4.4.4.4
! 

ip access-list extended ACL_XX
remark device to send data to server
permit object-group ACL_device object-group server_Port object-group ACL_server
remark device to retrive data from server
permit object-group ACL_server object-group server_Port object-group ACL_device
!
int Po1
ip access-group ACL_XX in 
ip access-group ACL_XX out
 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents