You can ascertain ACLs after applying them. But, the ACLs accept no
aftereffect until they are activated to the interface of the router. It
is a acceptable convenance to administer the ACL on the interface
abutting to the antecedent of the traffic. As apparent in this example,
back you try to block cartage from antecedent to destination, you can
administer an entering ACL to E0 on router A instead of an outbound
account to E1 on router C. An access-list has a abjure ip any any
around at the end of any access-list. If cartage is accompanying to a
DHCP appeal and if it is not explicity permitted, the cartage is alone
because back you attending at DHCP appeal in IP, the antecedent abode
is s=0.0.0.0 (Ethernet1/0), d=255.255.255.255, len 604, rcvd 2 UDP
src=68, dst=67. Note that the antecedent IP abode is 0.0.0.0 and
destination abode is 255.255.255.255. Antecedent anchorage is 68 and
destination 67. Hence, you should admittance this affectionate of
cartage in your access-list abroad the cartage is alone due to absolute
abjure at the end of the statement.
Note: For UDP cartage to canyon through, UDP cartage charge additionally be permited absolutely by the ACL.
Sections
Comments (0 posted)
Syndication
