Advertisement

06.23.2008 at 06:26AM PDT, ID: 23507464
[x]
Attachment Details

Access List Issues

Asked by skitechnh in Network Routers

Tags: Cisco, Modular Access Router, 1750

Hey everyone. I'm having an issue with writing an ACL to stop 13 specific machines from having access outside of our LAN, most importantly the internet. I've tried writing up an acl as a host and blocking it:

access-list 101 deny tcp host 172.25.X.X eq 80 any eq 80

which didnt work. I have also tried doing it as just

access-list 101 deny tcp 172.25.X.X 0.0.0.255 eq www any

which again didnt work. The access-group is being applied to in on fa0. There are only two static routes on the router. One is between sites over a t1 and the other moves all off LAN traffic to another router for internet traffic:

other site (172.25.x.x 255.255.255.0 192.168.X.X)
internet (0.0.0.0 0.0.0.0 172.25.X.X)

Anyone have any ideas?Start Free Trial
[+][-]06.23.2008 at 06:40AM PDT, ID: 21846064

View this solution now by starting your 7-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

 

About this solution

Zone: Network Routers
Tags: Cisco, Modular Access Router, 1750
Sign Up Now!
Solution Provided By: JFrederick29
Participating Experts: 1
Solution Grade: A
 
 
[+][-]06.23.2008 at 07:11AM PDT, ID: 21846367

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628