FW: About access-list

Abruzzese, John Wed, 27 Sep 2000 06:21:31 -0700


-----Original Message-----
From: Abruzzese, John 
Sent: Wednesday, September 27, 2000 8:14 AM
To: Raymond Mak
Subject: RE: About access-list


When you apply an access-list to an interface all traffic, for instance
in-bound, is blocked. After specifying what address(s) you wanted to filter
did you end the ACL with a "access-list 101 permit ip any any" in other
words at the very bottom to allow all other in-bound traffic?

-----Original Message-----
From: Raymond Mak [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 27, 2000 12:19 PM
To: [EMAIL PROTECTED]
Subject: Re: About access-list


Hi,

Once I apply the extended list on an interface for "IN" traffic, is it
implicitly block all incoming traffic on that interface?

I also want to know, for example.
access-list 110 permit tcp any any neq telnet

1. ip access-group 110 in
2. ip access-group 110 out

For 1, the source (any) would be internal network, destination (any) would
be outside.
Is it, for 2, the source would be outside network, destination would be
internal network?
Am I wrong with this kind of "point of view"?
Thanks

Raymond


Raymond Mak wrote:

> Hi,
>
> I am just a beginner. I have a question is that should I need to type
> any command to "enable" using ip extended access-list?
> It is because when I add an ip access-group for standard access-list on
> an interface, it works and no side-effect. But when I add an extended
> access-list on an interface,
> I even cannot ping out.
>
> Thanks
>
> Regards,
> Raymond
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _________________________________
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_________________________________
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: About access-list

Reply via email to
