Re: private network traffic and 3550

From: Peter (peter@cyscoexpert.com)
Date: Mon Feb 17 2003 - 14:30:09 GMT-3

• Next message: Dennis Laganiere: "RE: old cisco site"
• Previous message: Cameron, John: "RE: DLSW:explorer & MAC"
• Maybe in reply to: pita40: "private network traffic and 3550"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

access-list 10 deny 172.16.0.0 0.0.224.255

should be changed to:

access-list 10 deny 172.16.0.0 0.15.255.255

_____________________________
Peter
#7247 (R&S, Security)
CyscoExpert Corp.
4433 W. Touhy Ave. Suite 410
Lincolnwood, IL 60712
Phone (847) 674-3392
Toll Free (866) CyscoXP (297-2697)
Fax (847) 674-2625

----- Original Message -----
From: "CCIE FUN" <ccieexam2002@yahoo.com>
To: "Tom Larus" <tlarus@cox.net>; "pita40" <pita40@hotmail.com>;
<ccielab@groupstudy.com>
Sent: Monday, February 17, 2003 9:28 AM
Subject: Re: private network traffic and 3550

> standard access-list's don't use the "protocol"
> argument.
> here is how the access-list should be
>
> > interface vlan46
> > access-group 10 in
> >
> > access-list 10 deny 10.0.0.0 0.255.255.255
> > access-list 10 deny 192.168.0.0 0.0.255.255
> > access-list 10 deny 172.16.0.0 0.0.224.255
> > access-list 10 permit any
>
>
>
>
> --- Tom Larus <tlarus@cox.net> wrote:
> > interface vlan46
> > access-group 10 in
> >
> > access-list 10 deny ip 10.0.0.0 0.255.255.255
> > access-list 10 deny ip 192.168.0.0 0.0.255.255
> > access-list 10 deny ip 172.16.0.0 0.0.224.255
> > access-list 10 permit ip any
> >
> > I don't have a 3550 right now to test the exact
> > syntax on, but it looks
> > about right.
> >
> > Tom Larus, CCIE 10,014
> >
> > ----- Original Message -----
> > From: "pita40" <pita40@hotmail.com>
> > To: <ccielab@groupstudy.com>
> > Sent: Sunday, February 16, 2003 12:48 PM
> > Subject: private network traffic and 3550
> >
> >
> > > I have a question from one of the commercial labs
> > with no answer provided.
> > The
> > > question is
> > >
> > > configure cat1 to deny traffic from private
> > networks defined by RFC 1918
> > on
> > > Vlan 46.
> > >
> > > I am out of ideas on how to solve this question. I
> > thought of switchport
> > > protected command, but it seems that is not the
> > answer
> > >
> > >
> > > Help.
> > >
> > > P
>
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Shopping - Send Flowers for Valentine's Day
> http://shopping.yahoo.com

• Next message: Dennis Laganiere: "RE: old cisco site"
• Previous message: Cameron, John: "RE: DLSW:explorer & MAC"
• Maybe in reply to: pita40: "private network traffic and 3550"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Mar 01 2003 - 11:06:25 GMT-3