Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > Cisco access-list for protectin a LAN with a server

Thread Tools

Cisco access-list for protectin a LAN with a server

Posts: n/a

I'm trying to configure an access list on my Cisco 2516. I want to
permit all traffic from my subnet to the internet, and allow incoming
traficc just for two subnets. I don't use NAT, because my subnet has
several public IPs. The server is a web server, but not public. It can
be reached for just certain IP

I have tried this configuration, but I'm not sure that it's the best

Subnet Myrouter Another router Internet Other

At the serial interface of Myrouter, I've applied this access-list

permit tcp any any established
permit udp any any
permit ip
permit ip

ip access-group in (Is this OK?)

I don't use an access-list in the out way, because I want to permit
all the traffic.
Is this the best way to protect my network? Maybe I could change the
second line by permit udp any any eq 53 (just allow DNS)

Thank you very much for your time. If you need further details, do not
hesitate to contact me.
Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LAN-LAN VPN using Cisco PIX to Microsoft ISA Server 2004 wmmalii Cisco 0 05-16-2006 11:36 PM
Cisco VPN3030 Lan to lan NAT Martin Bilgrav Cisco 0 04-27-2005 09:45 PM
Password protectin for standby and hibernation Just Me In Chico A+ Certification 0 04-27-2005 08:10 PM
Can't connect wired linksys lan to wireless belkin lan Tom D Wireless Networking 4 01-24-2005 02:06 PM
IPSec - Lan to Lan - Nat routers - 1 Static and 1 Dynamic ip Sharqy_5 Cisco 0 07-20-2003 09:35 PM