We help IT Professionals succeed at work.

Access List

kevingattis
kevingattis asked
on
368 Views
Last Modified: 2012-05-05
I created a Access-list called blockserver,

extended ip access list blockserver
permit ip host 190.150.142.70 host 192.168.62.27
deny ip host 192.168.62.27 host 190.150.142.70
permit ip any any

Also the cisco has two gateways 190.150.142.99 and 192.168.62.1

When I ping from computer (192.168.62.27) to computer (190.150.142.70), the cisco blocks.  Which I want. The deny statement matches 4 times.

However, when I ping from computer(190.150.142.70) to computer (192.168.62.27), the cisco also blocks.  Which I do not want.  The permit statement matches 4 times and the deny matches 4 times.

I want to be able to let computer (190.150.142.70) ping computer (192.168.62.27) and stop computer (192.168.62.27)  from pinging computer (190.150.142.70).
Comment
Watch Question

Top Expert 2010
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
CERTIFIED EXPERT

Commented:
That is right. You need an ACE allowing pings to get through. echo-reply should work but if it doesn't just add another rule that uses echo and that should do it.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.