Hi Kureli,
I believe we have to do it other way round in case of GLOBAL to VRF and VRF to GLOBAL NAT.
In case of GLOBAL to VRF NAT, vrf should not be attached in NAT statement as Inside interface in in Global routing table and in case of VRF to GLO...
ORaccess-list abc line 1 extended permit udp host 0.0.0.0 host 255.255.255.255 eq domain ---> on OUT interface in IN direction.andaccess-list abc line 2 extended permit udp host <DHCP_server_IP> eq domain host 255.255.255.255 ----> on IN interface i...
Hi Kane,Since we have DHCP in picture, you cannot have specific IP addresses in the ACL. Therefore, your ACL should look like: "access-list ABC extended permit udp any any eq 53 ". This should be applied in INBOUND direction on the interface connecte...
"I am just confused as to why I can apply an ACL "inbound" on the VLAN170 interface and it works, but it does not work if I apply it "outbound". "
As Richard stated earlier, an Outbound ACL cannot filter the data originated by the device itself and...
