what wrong with the access-list?? [7:1825]

Tue, 24 Apr 2001 23:44:53 -0700 

Hello, 
1)I wanted to create a named IP access-list , then I used the following
command at the first step.  But it prompt me with error.  What's wrong? 

sin-net#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
sin-net(config)#ip access-list extended Binternet
                        ^
% Invalid input detected at '^' marker.


2)Take a look below
sin-net(config)#access-list 201 permit tcp host 100.100.100.100 host
100.100.100.101 eq any

anything wrong with this?  if I want to block every TCP connection from
100.100.100.100 to 100.100.100.101 regardless the port what should I do?

if I want to block every connection 100.100.100.100 to 100.100.100.101
regardless it it tcp, udp and etc What should I do?


3)I have a internet router with one ethernet0 int's IP 100.100.100.101 and a
serial IP unumbered to ethernet0, I have a firewall which connect to
ethernet0 of the router with IP 100.100.100.100. I want to disallow other
from internet cannot ping my router ethernet only 100.100.100.100 can
100.100.100.101(ethernet0) what should I do?  Can I do the the following? As
I know access-list work only for packet passing thru the router but the
destination is the router's ethernet IP. Can it works? and which interface
should I apply the access-list actually serial or ethernet? since serial is
unumbered to ethernet int  

Router(config)#access-list 101 permit icmp 100.100.100.100 100.100.100.101
Router(config)#int eth0
Router(config-if)ip access-group 101 out  

==================================================================
De informatie opgenomen in dit bericht kan vertrouwelijk zijn en 
is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht 
onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en 
de afzender direct te informeren door het bericht te retourneren. 
==================================================================
The information contained in this message may be confidential 
and is intended to be exclusively for the addressee. Should you 
receive this message unintentionally, please do not use the contents 
herein and notify the sender immediately by return e-mail.


==================================================================




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=1825&t=1825
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to