HI Friends need to allow 192.168.27.55 acl policey
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-09-2014 07:29 AM
This policy we need to allow IP:192.168.27.55 only.kindly Help as
Policy: test
entry Deny_53 {
if match all {
source-address 192.168.53.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_53 ;
}
}
entry Deny_27 {
if match all {
source-address 192.168.27.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_27 ;
}
}
entry Deny_51 {
if match all {
source-address 192.168.51.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_51 ;
}
}
entry Permit {
if match all {
source-address 0.0.0.0/0 ;
}
then {
permit ;
}
}
Number of clients bound to policy: 1
Client: acl bound once
Policy: test
entry Deny_53 {
if match all {
source-address 192.168.53.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_53 ;
}
}
entry Deny_27 {
if match all {
source-address 192.168.27.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_27 ;
}
}
entry Deny_51 {
if match all {
source-address 192.168.51.0/24 ;
destination-address 192.168.26.0/24 ;
}
then {
deny ;
count Deny_51 ;
}
}
entry Permit {
if match all {
source-address 0.0.0.0/0 ;
}
then {
permit ;
}
}
Number of clients bound to policy: 1
Client: acl bound once
4 REPLIES 4
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-10-2014 06:57 AM
thanks paulthat problem is solved
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-09-2014 09:00 AM
ok so all we need to do is put two permits at the beginning of the policy something like this
entry Permit_26 {
if match all {
source-address 192.168.27.55/32 ;
destination-address 0.0.0.0/0 ;
}
then {
permit ;
count permit_26 ;
entry permit_26_2 {
if match all {
source-address 0.0.0.0/0 ;
destination-address 192.168.27.55/32 ;
}
then {
permit ;
count permit_26_2;
put these before the denies. this will allow traffic to and from that host
P
entry Permit_26 {
if match all {
source-address 192.168.27.55/32 ;
destination-address 0.0.0.0/0 ;
}
then {
permit ;
count permit_26 ;
entry permit_26_2 {
if match all {
source-address 0.0.0.0/0 ;
destination-address 192.168.27.55/32 ;
}
then {
permit ;
count permit_26_2;
put these before the denies. this will allow traffic to and from that host
P
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-09-2014 08:53 AM
hallow Paul
I need allow specific host access 192.168.26.0 network
I need allow specific host access 192.168.26.0 network
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎09-09-2014 08:25 AM
Hello Mohammed
I don't understand what you need to do. I see the specific denies for the source and destination ranges. Then you have an explicit permit which should let everything else through.
Do you need the specific IP going to a specific host?
Thanks
P
I don't understand what you need to do. I see the specific denies for the source and destination ranges. Then you have an explicit permit which should let everything else through.
Do you need the specific IP going to a specific host?
Thanks
P
