Re: ACL help on 3550

From: Ken Diliberto (ken@kdmd.net)
Date: Mon Oct 13 2003 - 02:53:09 GMT-3

• Next message: ccie@centrum.cz: "CCIE lab"
• Previous message: Hunt Lee: "ACL help on 3550"
• Maybe in reply to: Hunt Lee: "ACL help on 3550"
• Next in thread: boby2kusa@hotmail.com: "Re: ACL help on 3550"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

When thinking about access-lists, think of yourself as the router. IN
means from devices connected to that interface talking to the router.

Ken

Hunt Lee wrote:
> Sorry about this stupid question...
>
> but when we do:
>
> int fa0/1
> ip access-group 100 in
>
> access-list 100 deny host 224.10.10.10 any
> access-list 100 permit ip any any
>
> I know that the 'in' means inbound, but is this 'incoming' traffic to the server / router (or whoever which is connected to port 0/1), or is it inbound to 3550 (what the server can initatied / reach from fa0/1 towards 3550 + the rest of network) ?
>
> In another words, is this ACL restricting what can reach the host behind fa0/1, or what this host can access ?
>
> L.
>
> ***Get your CCIE and a FREE vacation: Shop.GroupStudy.com***
> _______________________________________________________________________
> Please help support GroupStudy by purchasing your study materials from:
> shop.groupstudy.com
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

***Get your CCIE and a FREE vacation: Shop.GroupStudy.com***

• Next message: ccie@centrum.cz: "CCIE lab"
• Previous message: Hunt Lee: "ACL help on 3550"
• Maybe in reply to: Hunt Lee: "ACL help on 3550"
• Next in thread: boby2kusa@hotmail.com: "Re: ACL help on 3550"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Nov 24 2003 - 07:53:00 GMT-3