10-11
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 10 Controlling Network Access with Access Control Lists
Access Control List Overview
You might want to use an outbound ACL to simplify your ACL configuration. For example, if you want
to allow three inside networks on three different interfaces to access each other, you can create a simple
inbound ACL that allows all traffic on each inside interface. (See Figure 10-4.)
Figure 10-4 Inbound ACLs
See the following commands for this example:
FWSM/contexta(config)# access-list INSIDE extended permit ip any any
FWSM/contexta(config)# access-group INSIDE in interface inside
FWSM/contexta(config)# access-list HR extended permit ip any any
FWSM/contexta(config)# access-group HR in interface hr
FWSM/contexta(config)# access-list ENG extended permit ip any any
FWSM/contexta(config)# access-group ENG in interface eng
Web Server:
209.165.200.225
10.1.2.0/24
10.1.3.0/24
10.1.1.0/24
Inside
HR
Eng
Outside
FWSM
ACL Inbound
Permit from any to any
ACL Inbound
Permit from any to any
ACL Inbound
Permit from any to any
104639
To Next Page
Loading...
Need help?
General