Cisco ACLs

Hi

We have two LAN 192.168.27.0 and 10.0.40.0 connected by a CISCO Catalyst 3750 switch with a VLAN on it.

I am trying to setup some ACLs and am getting some strange behaviour.

when i put in ACL

access-list 101 permit ip 10.0.40.40 0.0.0.0 192.168.27.106 0.0.0.0

I cannot ping host 10.40.40.40 and the host cannot ping me,

BUT

if I put

access-list 101 permit ip 192.168.27.106 0.0.0.0 10.0.40.40 0.0.0.0

Pings from Both direction work.

Can any one enlighten me please as to why this work and the first one does not .

I am somewhat new to CISCO stuff

Thanks

Reply to
rc
Loading thread data ...

Which subnet / vlan interface is the acl being applied to? Is it being applied 'in' or 'out'?

BernieM

Reply to
BernieM

it is being applied 'in' only and I think I understand wy it is doing this, as this switch only support in

Thanks for you reply any way

Reply to
rc

Which interface is it being applied on? "in" on one interface is equivalent to "out" on the other, because a packet from one machine to the other goes into the router on the sender's interface and goes out of the router on the receiver's interface.

Reply to
Barry Margolin

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.