I have to block all outbound SMTP trafic on one of my interfaces (firewall connection) of a cisco 3650 switch
it should block anything and allow only my mail server trafic.
I set this access list:
Extended IP access list 102
10 permit tcp host mail_server_IP any eq smtp
20 deny tcp any any eq smtp
when I try to add that access-list to the required interface I don't have "out" option:
int g0/1 (the interface I want to block)
ip access-group 102 in (in is the only option & I need out)
what was I doing wrong?
why didn't I get the "out" option?
applying this access-list with "in" option blocked all outbound trafic on this port