Hot Downloads



The forum is in read only mode.
Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1


ACL 10 years 9 months ago #25623

I have been asked to create a acl for the following problem

There is a Router directly connected two networks (student and staff)
i have just put in two pcs to represent this
the student network is

the staff network is

My task is to create an acl that does the following
(a) allows staff to access the student network
(b) disallows all access from the student to staff
(c) but allows tcp (ack, etc etc)

so the router in middle student on left (interface fa0/0) and staff on right (interface fa0/1)

my acl is:
access-list 101 permit tcp established

access-list 101 deny tcp established

then went into fa0/0
ip access-group 101 in
then went into fa0/1
ip access-group out

but it fails when i ping wat is wrong?

Re: ACL 10 years 9 months ago #25624

ping is ICMP, not TCP.

Try again with ICMP instead of TCP
CCNA / CCNP / CCNA - Security / CCIP / Prince2 / Checkpoint CCSA

Re: ACL 10 years 9 months ago #25666

But remb in a real life situation you will need use acknowledgments and other tcp stuff, i don't want to block all access same important process still need to take place
  • Page:
  • 1
Time to create page: 0.144 seconds


Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V


  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup