C
C
CTOPMbI42016-11-28 07:52:56
Cisco
CTOPMbI4, 2016-11-28 07:52:56

What is the catch of Acl Cisco not working?

The rules do not work on a real piece of iron. That is, the traffic passes, the counter does not show that the ACL is triggered. And in the PT emulator. everything works without problems.
The question is what can influence the fact that the rules do not work? Or maybe I don't understand something.
Hardware Catalyst 3750X
The main thing included in the Config. If you need something more in the config, I'll throw it off. ip routing interface Vlan1 description NET1 ip address 192.168.1.4 255.255.255.240 ip access -group NET1_in in interface Vlan2 description NET2 ip address 192.168.1.18 255.255.255.240 .0.15 192.168.1.0 0.0.0.15



Permit IP 192.168.1.0 0.0.0.15 192.168.1.16 0.0.0.15
IP Access-List Extended Net2_in Permit
IP 192.168.1.16 0.0.0.15 192.168.1.16 0.0.0.15 Permit
IP 192.168.1.16 0.0.0.15 192.168.1.0 0.0.0.15

at ping from 192.168.1.17 to 192.168.1.1 icmp pass but the counter does not show that it works. also from 192.168.1.1 to 192.168.1.17
52952b10eec742e180a9b5999c5eb1eb.png

Answer the question

In order to leave comments, you need to log in

1 answer(s)
C
CTOPMbI4, 2016-11-28
@CTOPMbI4

vlan to interfaces
interface GigabitEthernet1/0/2
description Link-To-NET1
switchport access vlan 1
switchport mode access
interface GigabitEthernet1/0/3
description Link-To-NET2
switchport access vlan 2

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question