At 04:34 PM 1/24/2002 -0500, you wrote: >access-group outbound in interface inside
Which is EXACTLY why I suggested renaming the access list ;-) I eventually went to 'insidelist', 'outsidelist', 'dmzlist', etc. I'm much less confused (about that issue only) now. >-----Original Message----- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] >Sent: Thursday, January 24, 2002 2:32 PM >To: [EMAIL PROTECTED] >Subject: FW: help with outbound statement [7:33085] > > >i inputed this command , >access-list outbound deny ip 10.3.0.0 255.255.0.0 216.136.131.71 >255.255.255.255 >do i have to apply it to an interface? > > > > >outbound 1 deny 10.3.0.0 255.255.0.0 216.136.131.71 255.255.255.255 > >Which version of PIX code are you running? > >5.x syntax would be: > >access-list outbound deny ip 10.3.0.0 255.255.0.0 216.136.131.71 >255.255.255.255 > > > > >which would say network everything on network 10.3.0.0 can go to > >216.136.131.71 > >i get an error > >so i cant even apply it to the inside interface yet > >I'd also ask you to reconsider naming your access list 'outbound' if you're >applying it to the 'inside' interface - I did the same thing, but it can be >VERY confusing. Wait until you accidentally apply it to the 'outside' >interface - deleting the existing access list... > >Berry Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33134&t=33085 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
