Home
Certification Preparation
Cisco
CCNA & CCENT
ACL Query
redgunner
Hey,
1. How do I block all traffic except a subnet
2. How do I allow all traffic except a subnet
Thank you in advance!
Find more posts tagged with
Comments
Welly_59
1. Permit ip any [subnet]
Deny ip any any
2.deny ip any [subnet]
Permit ip any any
First lines in each answer could be reversed if subnet is source and then any as the destination
redgunner
I am bit a confused with the syntax of the example you gave - So would it be as follows below for wanting to block all traffic except a subnet?
Router(config-std-nacl)#permit any
Router(config-std-nacl)#deny ip
Router(config-std-nacl)#deny 192.168.3.0
DCD
1) access-list 1 permit X.X.X.X
2) access-list 2 deny X.X.X.X
access-list 2 permit any
mikeybinec
use wildcards deny 192.168.1.0 0.0.0.63 this would block 1.1 -- 1.63 but would allow everything else in the subnet i.e. 65 - 254
and be careful about the explicit deny all
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
