Access-Control List question regarding two networks
Posted on 2004-04-06
I have two networks divided by two Ethernet connections in my 1720 router. I know how to config the basics in my router and I know the command line but I am having a hard time understanding what i need to do to let my 10.0.0.0 network access only a few ip's on my 220.127.116.11 network. I have an access-list that consists of this:
access-list 1 permit 192.168.0.0 0.0.255.255
access-list 1 permit 10.0.0.0 0.0.255.255
access-list 10 deny 10.0.0.0 0.0.255.255
access-list 10 permit any
access-list 101 permit tcp 192.168.0.0 0.0.255.255 any
no cdp run
This access-list is not allowing the 10. network and 192 network to access each other which I want. But what I do need to do is allow a few ip's to talk across each network. So say I have a webserver and email server at address' 192.168.0.47 and 192.168.0.48 and a couple others. What would the rules be that I need to add to keep the wall there but just allow access to those two specific IP's? 192.168.0.47 & 48.
Thanks in advance!