This should be simple, but I am doing something wrong. I need a write an PACL that will only allow established traffic to a switch port. Here is what I have so far :
access-list 101 permit tcp any 192.168.145.250 0.0.0.0 established
int g1/48 ip access-group 101 in
What this gets me is no connectivity with the acl in place on the interface. It has to be something that is right in my face, that I am missing. Our 4500 can't do NAT, so I have to find a workaround.
Suggestions?
TIA Lovejoy