RE: ACL's on Loopbacks?

From: Pratt, Jeremy (JPratt@coh.org)
Date: Mon Nov 18 2002 - 18:58:26 GMT-3

• Next message: Bjarne Jensås: "RE: Can I take my laptop to lab exam"
• Previous message: Desmond: "Password Discovery in CCIE Lab"
• Maybe in reply to: Nate Kleven: "ACL's on Loopbacks?"
• Next in thread: Jay: "Re: ACL's on Loopbacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Why not apply the ACL to the VTY which is where the telnet is handled by the
router?

-----Original Message-----
From: Nate Kleven [mailto:cciemail@intellinet.ws]
Sent: Saturday, November 16, 2002 10:28 PM
To: ccielab@groupstudy.com
Subject: ACL's on Loopbacks?

I was asked to create an acl for a loopback interface that only allowed
Telnet traffic from particular ip's. That was not working for me, so I got
frustrated and denyed all traffic. However, I am still able to telnet to
it, even with the folling config.
 
!
interface Loopback0
ip address 10.10.10.1 255.255.255.0
ip access-group 102 in
!
access-list 102 deny ip any any
 
 
Has anyone run into this before?
 
 
NK

• Next message: Bjarne Jensås: "RE: Can I take my laptop to lab exam"
• Previous message: Desmond: "Password Discovery in CCIE Lab"
• Maybe in reply to: Nate Kleven: "ACL's on Loopbacks?"
• Next in thread: Jay: "Re: ACL's on Loopbacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Dec 03 2002 - 07:23:05 GMT-3