|
|
 FAQ
 Search
 Memberlist
 Usergroups
 Register
 Profile
 Private messages
 Log in
|
|
| Author |
Message |
Eric Vanderveer
Guest
|
 Posted: Tue Aug 26, 2003 8:35 pm Post subject: CISCO 3550 ACL help |
 |
|
I just installed a 3550 with this new GUI interface(new because I have only
seen the IOS). My problem is I am setting up a access list under the GUI
and then assigning the acl to a port on my switch. When I do this it blocks
everything to that server. Here is the access list
'permit tcp any host 67.39.134.11 eq www established network tos min-delay
long time-range all day'
If you have any ideas let me knwo.
Thanks,
Eric Vanderveer
System Administrator
www.speednetllc.com
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =----- |
|
| Back to top |
|
 |
|
|
ec
Guest
|
| Posted: Tue Aug 26, 2003 9:22 pm Post subject: Re: CISCO 3550 ACL help |
|
|
"Eric Vanderveer" <evanderv@speednetllc.com> wrote in message
news:3f4b7f5a_7@corp.newsgroups.com...
| Quote: | I just installed a 3550 with this new GUI interface(new because I have
only
seen the IOS). My problem is I am setting up a access list under the GUI
and then assigning the acl to a port on my switch. When I do this it
blocks
everything to that server. Here is the access list
'permit tcp any host 67.39.134.11 eq www established network tos min-delay
long time-range all day'
If you have any ideas let me knwo.
Thanks,
Eric Vanderveer
System Administrator
www.speednetllc.com
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =-----
|
There is an implicit deny all at the end of the list. |
|
| Back to top |
|
|
Robert Chen
Guest
|
| Posted: Tue Aug 26, 2003 10:18 pm Post subject: Re: CISCO 3550 ACL help |
|
|
Try this
permit ip any host 67.39.134.11 eq www
Alot of the web stuff uses UDP, if I'm no mistaken.
"Eric Vanderveer" <evanderv@speednetllc.com> wrote in message
news:3f4b7f5a_7@corp.newsgroups.com...
| Quote: | I just installed a 3550 with this new GUI interface(new because I have
only
seen the IOS). My problem is I am setting up a access list under the GUI
and then assigning the acl to a port on my switch. When I do this it
blocks
everything to that server. Here is the access list
'permit tcp any host 67.39.134.11 eq www established network tos min-delay
long time-range all day'
If you have any ideas let me knwo.
Thanks,
Eric Vanderveer
System Administrator
www.speednetllc.com
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =----- |
|
|
| Back to top |
|
|
Mark Smythe
Guest
|
| Posted: Thu Aug 28, 2003 4:05 am Post subject: Re: CISCO 3550 ACL help |
|
|
"Eric Vanderveer" <evanderv@speednetllc.com> wrote in message
news:3f4b7f5a_7@corp.newsgroups.com...
| Quote: | and then assigning the acl to a port on my switch. When I do this it
blocks
everything to that server. Here is the access list
'permit tcp any host 67.39.134.11 eq www established network tos min-delay
If you put established, doesnt that mean it will let traffic to www if it is |
established ? then what if it is not established yet ?
Maybe for a test try permit tcp any any established
permit tcp any host 67.39.134.11 eq www
permit ip any any
If that works, remove the ip any any and see if it fails again. Could be the
server not doing www .
long time-range all day'
| Quote: | If you have any ideas let me knwo.
Thanks,
Eric Vanderveer
System Administrator
www.speednetllc.com
-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =----- |
|
|
| Back to top |
|
|
|
|
