Hi guys
please help me to understand how access lists work.
My goal is to set an access list for a VPN user that
- permits access only to some specific IP addresses
- deny access to all other IPs and subnets
I have created 2 entries
1 PASS Allowed IP1 Priority 100 (ipv4) DstIPv4=192.168.0.1
2 Discard Deny all Priority 200 (ether)*
In my meaning these chained rules should ensure access to 192.168.0.1 and block all other destinations.
But, in fact, all the traffic is blocked, even if i have allowed 192.168.0.1 with the first rule.
Am i missing some concepts?
access list problem
-
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: access list problem
Are you really want to allow packets only destinated to 192.168.0.1?
Do you want to waste packets from 192.168.0.1?
Do you want to waste packets from 192.168.0.1?