I read through the ACL not sure what im missing.
Im applying this ACL to a VLAN which will apply to traffic from inside the vlan to outside (Aruba 3810).
Outside to inside is currently not configured so by default all is allowed but as soon as I apply the ACL, computers in the VLAN lose access. I've permitted the VLAN to our Firewall (Switch -> Firewall -> Internet) & DHCP/DNS/AD ports are all permitted so im not sure what im missing :s
DC/DHCP/DNS = IP of the server
FIREWALL = IP of the firewall (its in the default VLAN of 1)
10 permit ip DC/DHCP/DNS 0.0.0.255 172.25.61.0 0.0.0.255
11 permit tcp PrintServer 0.0.0.255 172.25.61.0 0.0.0.255 eq 139
12 permit tcp PrintServer 0.0.0.255 172.25.61.0 0.0.0.255 eq 445
13 permit udp PrintServer 0.0.0.255 172.25.61.0 0.0.0.255 eq 138
14 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 464
16 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 389
17 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 389
18 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 636
19 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 3268
20 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 3269
21 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 53
22 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 53
23 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 88
24 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 88
25 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 445
26 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 445
27 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 67
28 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 67
29 permit tcp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 68
30 permit udp 172.25.61.0 0.0.0.255 DC/DHCP/DNS 0.0.0.255 eq 68
31 permit tcp 172.25.61.0 0.0.0.255 PrintServer 0.0.0.255 eq 445
90 permit ip 172.25.61.0 0.0.0.255 IPCamera 0.0.0.255
91 permit ip 172.25.61.0 0.0.0.255 FIREWALL 0.0.0.255
No comments:
Post a Comment