Hi,
I need some advice.
I am having a strange issue with any ACL's I set up on a Cisco C891F-K9, I set up the ACL below to block ICMP replies and echo's on the WAN interface but for some reason, I am still able to ping 2.2.2.2 externally from the router,
I have tried the same thing with TCP port 22 for remote SSH access and it also won't block SSH is there something I am missing here?
! interface Loopback0 description # WAN # ip address 2.2.2.2 255.255.255.248 ip access-group INET in no ip proxy-arp shutdown ! interface FastEthernet0 description # PE # no ip address duplex full speed 100 ! interface FastEthernet0.3002 description # P2P PE VLAN # encapsulation dot1Q 3002 ip address 1.1.1.1 255.255.255.254 ! ip route 0.0.0.0 0.0.0.0 1.1.1.2 ! ip access-list extended INET deny icmp any any !
No comments:
Post a Comment