AgeOfWars
asked on
Access list
Hi,
I have 2 cisco routers. A and B.
A must able to initiate TCP connections to B and be able to receive packets in response to its own connections.
But B can't initialize TCP connections to A.
How do i configure that in the excesslist?
Thank you.
I have 2 cisco routers. A and B.
A must able to initiate TCP connections to B and be able to receive packets in response to its own connections.
But B can't initialize TCP connections to A.
How do i configure that in the excesslist?
Thank you.
Hi AgeOfWars,
Create an access list which only permits established connections back to computer A :-
access-list 101 permit tcp any any established
access-list 101 deny ip any any
Then apply this access-list in the outbound direction on the interface computer A connects to.
Create an access list which only permits established connections back to computer A :-
access-list 101 permit tcp any any established
access-list 101 deny ip any any
Then apply this access-list in the outbound direction on the interface computer A connects to.
ASKER
Hi GrBlades,
I have 2 questions)
1)
Can you briefly explain the use of TCP and IP in the sentence. I know what they means but I don't really get it.
2)
Say, PC A is connected to Router port 1 and B is connected to router port 2. When a packet travels from PC A to PC B, the accesslist will activate becuase it is applied to port 1. my question is when a packet travelling from PC B to PC A, it will go through port 1, route to port 2 and to PC A, will the accesslist applied on port 1 be activated?
if yes, which will be the outbound and inbound port?
Thank you.
Ian
I have 2 questions)
1)
Can you briefly explain the use of TCP and IP in the sentence. I know what they means but I don't really get it.
2)
Say, PC A is connected to Router port 1 and B is connected to router port 2. When a packet travels from PC A to PC B, the accesslist will activate becuase it is applied to port 1. my question is when a packet travelling from PC B to PC A, it will go through port 1, route to port 2 and to PC A, will the accesslist applied on port 1 be activated?
if yes, which will be the outbound and inbound port?
Thank you.
Ian
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks!
ASKER
I meant I have 2 computers, A and B connected to one router.
PC A must be able to initiate TCP connections to B and be able to receive packets in response to its own connections.
But PC B alone can't initialize TCP connections to A.
how do I configure the accesslist
Thank you