Solved

how to create an ACl on cisco router to accept icmp from particular host and deny all others

Posted on 2011-03-21
4
520 Views
Last Modified: 2012-06-21
I want to set an ACL on Gigabit Interface on the router to accept icmp from only one host and deny all request of ICMP from all others.

Thanks and regards

Saqib
0
Comment
Question by:nocinfospan
  • 2
4 Comments
 
LVL 45

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 35182542
You could try something like...


access-list 100 permit icmp host 1.1.1.1 any
access-list 100 deny icmp any any
access-list 100 permit ip any any

int gi0/0
ip access-class 100 in
0
 
LVL 1

Author Comment

by:nocinfospan
ID: 35192212
i have set "ip access-group 100 in" because i do not have any other option under my int gig0/0 .. But after applying all the above lines do not work it still able to ping from other hosts as well.
0
 
LVL 9

Expert Comment

by:DanJ
ID: 35241300
apply these under the vty lines
for instance

line vty 0-4
access-class 100 in

the number of vty lines are platform dependant. To cover all lines type line vty 0 ?
in this case the last vty line is 807
R2(config)#line vty 0 ?
  <1-807>  Last Line number
0
 
LVL 1

Author Closing Comment

by:nocinfospan
ID: 35380694
its not a complete solution i have to do some more things to acheive that functionality
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Forwarding web requests to different web servers 15 71
stacking switches 2 44
EIGRP Configuration 2 46
Cisco UCS: C-Series, bios failed power-on self test 2 21
Hello , This is a short article on how would you go about enabling traceoptions on a Juniper router . Traceoptions are similar to Cisco debug commands but these traceoptions are implemented in Juniper networks router . The following demonstr…
I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

943 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now