ACL question
Cider
Member Posts: 88 ■■□□□□□□□□
in CCNA & CCENT
Studying for CCNA and trying to block traffic out an interface.
Standard 2 router setup connected via FE.
Set an access list to deny any and apply it OUT of Router A. Nothing seems to happen - icmp , eigrp packets pass. Apply the same list IN on Router A and bam all eigrp multicast blocked from router B.
This is in GNS3 so im not sure if there is a bug or im being a dumbass
Any help appreciated.
Standard 2 router setup connected via FE.
Set an access list to deny any and apply it OUT of Router A. Nothing seems to happen - icmp , eigrp packets pass. Apply the same list IN on Router A and bam all eigrp multicast blocked from router B.
This is in GNS3 so im not sure if there is a bug or im being a dumbass
Any help appreciated.
Comments
-
Dieg0M
Member Posts: 861
ACL has no effect on locally originated traffic.Follow my CCDE journey at www.routingnull0.com -
Cider
Member Posts: 88 ■■□□□□□□□□
Didnt know that, so in a P2P setup, you cannot set up a outbound ACL?
-
networker050184
Mod Posts: 11,962 Mod
Yes you can. The router will not be generating the traffic that traverses the link, it will be from end systems.An expert is a man who has made all the mistakes which can be made. -
Cider
Member Posts: 88 ■■□□□□□□□□
Yeah I see, I setup 3 routers and it blocks ping from out end to the other as it doesnt locally originate.
Thanks for all the help.