From: Amr (amr.ccie@gmail.com)
Date: Sat Nov 22 2008 - 08:16:53 ARST
Dear All,
My scenario is as follows
R1 (Fa0/1) -------------------- (Fa0/1) R2 (S0/0)
-----------------------------(S0/0/0) R3
i want to deny telnet from R2 to R3 using an outbound access-list applied on
inteface S0/0
so how to match on locally originated telnet traffic from R2 toward R3
loopback 0 (3.3.3.3)
Here is the configuration on R2
interface Serial0/0
ip address 10.1.1.2 255.255.255.0
ip access-group 150 out
encapsulation frame-relay
frame-relay map ip 10.1.23.3 203 broadcast
no frame-relay inverse-arp
access-list 150 deny tcp any host 3.3.3.3 eq telnet
access-list 150 permit ip any any
by applying the above configuration , telnet traffic from R1 to R3 is denied
by the telnet traffic originated from R2 toward R3 is permitted
So how to block the telnet traffic originated from R2 toward R3 using the
outbound access-list on R2
Thanks In Advance
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Dec 01 2008 - 08:18:31 ARST