I have an ethernet interface in a Cisco 7206 that I need a simple anti-spoofing ACL for. There are 2 subnets bound to the interface - as an example
111.222.333.0/24 and 444.555.666.0/25
if I use access-list 10 permit 111.222.333.0 0.0.0.255
access-list 10 permit 444.555.666.0 0.0.0.128
and apply it to the interface out, I get unexpected results, Can someone show me what the outbound acl for anti-spoofing should look like?