[wplug] OT - Some simple Cisco ACL Help

Brian A. Seklecki lavalamp at spiritual-machines.org
Sat Dec 6 21:09:55 EST 2008


>
> The problem is those source ports are dynamic.   Are we looking at
> this backwards or something here?
>

This looks right; you're applying this with:

# conf t
connf# int vlan1000 
conf-if# ip access-group 101 in
conf-if# ip access-group 102 out
^Z

... ?

Also, are we talking about SNMP to the device _itself_ or a device 
reachable via another interface?

The trick is to remember that IOS is completely stateless unless you've 
purchased and enabled one of the several hundred feature addons.

~BAS


More information about the wplug mailing list