Well am again confused, because the thing which was in my mind that access-group acl_in in interface inside means that the access-list binds to the inside interface for the outbound traffic not the inbound traffic!
I agree that the command access-group acl_out in interface outside mean that the access-list bind to the outside interface for the inbound traffic, and this is so clear because every thing from outside of the pix to the inside is denied. The confusion right now in the real meaning of the acess-group in interface inside Am I making any sense? If both commands acess-group in interface inside and access-group in interface outside meant for the inbound traffic then why Cisco experts designed the two commands for the same result ! Ismail Al-Shelh Abdulla Fouad Company Network Engineer CD-Dammam -----Original Message----- From: BJ Rice [mailto:[EMAIL PROTECTED]] Sent: Monday, February 10, 2003 10:37 PM To: [EMAIL PROTECTED] Subject: RE: access-group difference [7:62769] oops, one mistake I meant to say this access-group acl_in in interface inside - binds the acl_in access list (created above) to the inside interface . instead of this access-group acl_in in interface inside - binds the acl_in access list (created above) to the outside interface (for inbound traffic). Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63082&t=62769 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
