Hi
I tried to deny telnet to switch, 10.2.64.162, from the specific IP address, 10.2.64.168.
I bind the acl on interface 2, but it didn't work.
Is there any config errors?
can anyone help?
Thanks.
========= switch configuration ================
console# show running-config
ip access-list extended acl3
deny tcp 10.2.64.168 0.0.0.0 telnet any telnet
permit tcp any any any any
exit
username admin password encrypted 5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8 pr
ivilege 15
!
interface vlan 1
ip address 10.2.64.162 255.255.255.0
!
interface gigabitethernet1/0/2
service-acl input acl3
Default settings:
SW version 4.1.0.12 (date 22-Jul-2013 time 16:32:43)
Gigabit Ethernet Ports
=============================
no shutdown
speed 1000
duplex full
negotiation
flow-control on
mdix auto
no back-pressure
interface vlan 1
interface port-channel 1 - 32
spanning-tree
spanning-tree mode RSTP
======== message on switch ==================
console# 03-Oct-2006 18:43:36 %AAA-I-CONNECT: User CLI session for user admin over telnet , source 10.2.64.168 destination 10.2.64.162 ACCEPTED
↧