access list

Discussion in 'Cisco' started by bruce cao, Jan 28, 2004.

  1. bruce cao

    bruce cao Guest

    I had set up an access list as belowed steps, but it cannot works,

    1 Cisco 3810 router,
    E0: 128.0.0.1

    2 PC: 128.0.0.2

    access-list 10 permit 128.0.0.3 0.0.0.0
    int e0
    ip access-group 10 out
    end

    but still I can telnet to the 3810 router by 128.0.0.1
    what's wrong with my configuration?
     
    bruce cao, Jan 28, 2004
    #1
    1. Advertising

  2. On Wed, 28 Jan 2004 14:44:59 +0800, bruce cao wrote:

    > 1 Cisco 3810 router,
    > E0: 128.0.0.1
    >
    > 2 PC: 128.0.0.2
    >
    > access-list 10 permit 128.0.0.3 0.0.0.0
    > int e0
    > ip access-group 10 out
    > end


    Well, for one, outbound access lists aren't applied to locally generated
    traffic, such as telnet on the router.

    --
    Rgds,
    Martin
     
    Martin Gallagher, Jan 28, 2004
    #2
    1. Advertising

  3. bruce cao

    bruce cao Guest

    but when I try to use the 'in' , then it works.
    like,

    ip access-group 10 in


    "Martin Gallagher" <>
    ??????:p...
    > On Wed, 28 Jan 2004 14:44:59 +0800, bruce cao wrote:
    >
    > > 1 Cisco 3810 router,
    > > E0: 128.0.0.1
    > >
    > > 2 PC: 128.0.0.2
    > >
    > > access-list 10 permit 128.0.0.3 0.0.0.0
    > > int e0
    > > ip access-group 10 out
    > > end

    >
    > Well, for one, outbound access lists aren't applied to locally generated
    > traffic, such as telnet on the router.
    >
    > --
    > Rgds,
    > Martin
    >
     
    bruce cao, Jan 30, 2004
    #3
  4. In article <bvcoc2$oi0$>,
    "bruce cao" <> wrote:

    > but when I try to use the 'in' , then it works.
    > like,
    >
    > ip access-group 10 in


    Inbound access lists are applied to all packets, before the router
    determines whether they're going to be forwarded or processed locally.
    Outbound access lists are only applied to packets that have been
    forwarded.

    >
    > "Martin Gallagher" <>
    > ??????:p...
    > > On Wed, 28 Jan 2004 14:44:59 +0800, bruce cao wrote:
    > >
    > > > 1 Cisco 3810 router,
    > > > E0: 128.0.0.1
    > > >
    > > > 2 PC: 128.0.0.2
    > > >
    > > > access-list 10 permit 128.0.0.3 0.0.0.0
    > > > int e0
    > > > ip access-group 10 out
    > > > end

    > >
    > > Well, for one, outbound access lists aren't applied to locally generated
    > > traffic, such as telnet on the router.
    > >
    > > --
    > > Rgds,
    > > Martin
    > >

    >
    >


    --
    Barry Margolin,
    Arlington, MA
    *** PLEASE post questions in newsgroups, not directly to me ***
     
    Barry Margolin, Jan 30, 2004
    #4
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. J Bard
    Replies:
    2
    Views:
    4,058
    J Bard
    Jan 10, 2004
  2. PS2 gamer
    Replies:
    6
    Views:
    7,122
    Hansang Bae
    Jun 9, 2004
  3. Yehavi Bourvine
    Replies:
    1
    Views:
    1,139
    Hansang Bae
    Aug 26, 2004
  4. paeengi8
    Replies:
    0
    Views:
    843
    paeengi8
    Jun 25, 2007
  5. Southern Kiwi
    Replies:
    6
    Views:
    2,295
    Southern Kiwi
    Mar 19, 2006
Loading...

Share This Page