From: Peter (peter@cyscoexpert.com)
Date: Wed Feb 12 2003 - 23:59:57 GMT-3
Router does not deny its own traffic.
_____________________________
#7247 (R&S, Security)
CyscoExpert Corp.
4433 W. Touhy Ave. Suite 410
Lincolnwood, IL 60712
Phone (847) 674-3392
Toll Free (866) CyscoXP (297-2697)
Fax (847) 674-2625
----- Original Message -----
From: <pandoraytchan@hotmail.com>
To: <ccielab@groupstudy.com>
Sent: Wednesday, February 12, 2003 7:58 PM
Subject: Access-list problem
> Hi all,
>
> R1------R2
>
> R1 config
>
> interface Serial0/1
> ip address 131.108.2.2 255.255.255.0
> ip access-group 2 out
> no ip route-cache
> no ip mroute-cache
> clockrate 128000
> !
> !
> access-list 2 deny any log
>
> I found that I can ping the r2 even this access list block all traffic.
>
> Does access-list 2 block "all" traffic which originate from the r1?
>
> Does the access list work like "policy routing", doesn't work on the
> packet which originate from the router (unless I use command "local
> policy")?
>
> Thanks for any help
>
> Pandora
> .
.
This archive was generated by hypermail 2.1.4 : Sat Mar 01 2003 - 11:06:20 GMT-3