1. Home
  2. Cisco Systems
  3. Access-list Deny to a VLAN Please help

Access-list Deny to a VLAN Please help

ALL,

I think it's my tester that does't know what the *** is going on.

Please verify that I am not crazy.

Basically I want to deny subnet 177.186.72.0 /24 to the .7, .100, .139, .218 servers.

access-list 102 deny ip 177.186.72.0 0.0.0.255 host 167.186.39.7 log access-list 102 deny ip 177.186.72.0 0.0.0.255 host 167.186.20.100 log access-list 102 deny ip 177.186.72.0 0.0.0.255 host 167.186.38.139 log access-list 102 deny ip 177.186.72.0 0.0.0.255 host 167.186.38.218 log

This is applied to my inbound interface.

Reply to
Trouble
Loading thread data ...

You're trying to deny hosts on that network from accessing those servers, or deny access from those servers to that network? As I look at it, right now you're denying hosts on that network from accessing those servers. If that's your intent, and you have access-list 102 applied inbound on the interface to that network, then no, you're not crazy!

Reply to
Scott

Don't forget the "permit ip any any"

Reply to
the_jonesboys_posse

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.