Re: ACL's on Loopbacks?

From: kym blair (kymblair@hotmail.com)
Date: Sun Nov 17 2002 - 06:14:01 GMT-3

• Next message: kym blair: "Re: NAT To Multiple Outside Interfaces"
• Previous message: Kevin Tang: "RE: OSPF On NBMA with a twist"
• Maybe in reply to: Nate Kleven: "ACL's on Loopbacks?"
• Next in thread: Pratt, Jeremy: "RE: ACL's on Loopbacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Nate,

access-group is for denying the arrival of packets on an interface. In this
case, the packets arrive via vty line, so put "ip access-class 102 in" under
line vty 0 4

HTH, Kym

>From: Nate Kleven <cciemail@intellinet.ws>
>Reply-To: Nate Kleven <cciemail@intellinet.ws>
>To: ccielab@groupstudy.com
>Subject: ACL's on Loopbacks?
>Date: Sat, 16 Nov 2002 22:28:13 -0800
>
>I was asked to create an acl for a loopback interface that only allowed
>Telnet traffic from particular ip's. That was not working for me, so I
>got
>frustrated and denyed all traffic. However, I am still able to telnet to
>it, even with the folling config.
>
>!
>interface Loopback0
>ip address 10.10.10.1 255.255.255.0
>ip access-group 102 in
>!
>access-list 102 deny ip any any
>
>
>Has anyone run into this before?
>
>
>NK

• Next message: kym blair: "Re: NAT To Multiple Outside Interfaces"
• Previous message: Kevin Tang: "RE: OSPF On NBMA with a twist"
• Maybe in reply to: Nate Kleven: "ACL's on Loopbacks?"
• Next in thread: Pratt, Jeremy: "RE: ACL's on Loopbacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Dec 03 2002 - 07:23:02 GMT-3