Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Need help on a Extended ACL command! Pls help, thanks!
#2
(02-02-2010, 04:16 PM)AlphonseElric link Wrote:Hi people,

I have a question on Ext-ACL. Please help..

Users in IT Dept network (192.168.3.0) should not be able to ping or access KL Dept network (192.168.3.0) and vice versa.
Both IT Dept and KL Dept should be able to access the internet.

So my acl command is:
deny ip 192.168.3.0 0.0.0.255 host 192.168.3.0 eq icmp
deny ip 192.168.5.0 0.0.0.255 host 192.168.5.0 eq icmp
permit any any

Is my command correct?
A friend of time told me that, my command will block the respective network from accessing the internet and everything else as well?
Is it true?

Please help people! Urgent! Thanks!!!  Smile
Did you make a mistake in the addresses of the networks? If the IT dept and KL dept are both in the 192.168.3.0 network the traffic wont reach the router that ACLs are configured on. Secondly The host designation should not be assigned to a network address.
Reply


Messages In This Thread
Need help on a Extended ACL command! Pls help, thanks! - by AlphonseElric - 02-02-2010, 04:16 PM
Re: Need help on a Extended ACL command! Pls help, thanks! - by jhnfry - 04-18-2010, 12:12 AM

Forum Jump:


Users browsing this thread: 2 Guest(s)