446
Views
0
Helpful
0
Replies
Object-group Access control list
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-10-2021 06:31 AM - edited 11-10-2021 06:33 AM
Hi there,
I need to implement ACL in router using object group method. The scenario is host(1.1.1.1) send images to 3 servers ( 2.2.2.2,3.3.3.3, 4.4.4.4) via tcp port 3320,104,2104 and the host retrieve data from the server via same port.
Appreciate your advise on this on how to implement.Please advice below config are correct
object-group network ACL_device description device host 1.1.1.1 ! object-group service server_Port description Service Port tcp eq 3320 tcp eq 104 tcp eq 2104 ! object-group network ACL_server description server host 2.2.2.2 host 3.3.3.3 host 4.4.4.4 !
ip access-list extended ACL_XX remark device to send data to server permit object-group ACL_device object-group server_Port object-group ACL_server remark device to retrive data from server permit object-group ACL_server object-group server_Port object-group ACL_device !
int Po1
ip access-group ACL_XX in
ip access-group ACL_XX out
Labels:
- Labels:
-
Branch Router
0 Replies 0
