Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Need help on a Extended ACL command! Pls help, thanks!
#3
This ACL is all wrong. First off in your original question you used the same network address for both departments.  Then in your ACL you have two different networks.  I will assume that the 192.168.3.0 subnet is for IT Dept and that the 192.168.5.0.  Also the eq ICMP at the end of your ACL is only stopping pings and thats not even proper. So it looks like your super netting if its all under one big network. If those are the subnets and you want to block all traffic from reaching each other the ACL would look like this

deny ip 192.168.3.0 0.0.0.255 192.168.5.0 0.0.0.255
deny ip 192.168.5.0 0.0.0.255 192.168.3.0 0.0.0.255
permit ip any any

How many routers are separating the two network segments?
Reply


Messages In This Thread
Need help on a Extended ACL command! Pls help, thanks! - by AlphonseElric - 02-02-2010, 04:16 PM
Re: Need help on a Extended ACL command! Pls help, thanks! - by bryanrobh - 05-20-2010, 07:27 PM

Forum Jump:


Users browsing this thread: 1 Guest(s)