About Us Products Services Contact Us
Manucomp | Home
1 Year Warranty Call us Toll-Free at : 1-866-440-1115
Home > Cisco Tips & Tricks
 

ACL 102

Since you only want your users to be able to browse the Internet, you must block all incoming traffic accept for the established connections in which the websites are replying to a computer on your network. Doing this is impossible unless you use the 'established' command.

Now that we are familiar with the 'established' command, ACL 102 simply states to permit established traffic from anywhere to all computers within our 63.36.9.0 network.

You may ask why access-list 102 does not read:

access-list 102 permit tcp any any established
In this situation this works just as good, but because it is not as specific, it is considered a hole or an area of vulnerability (especially if you ever got another block of IP addresses).

Copyright © Manucomp 2005. All Rights Reserved. Disclaimer | Privacy Policy
All Sun and Cisco products come with 1 year warranty
Canadian 7471 Islington Avenue • Toronto, Ontario, Canada • L4L 1W2 •
Phone : 416-484-0781 • Fax : 416-946-1267 • Toll-Free: 1-866-440-1115
USE OF TRADEMARKS
This site is independent of and does not represent any manufacturer or company for which products may be displayed on this web site. Additionally, said manufacturers do not officially sponsor, approve, or endorse this site or its content. All associated or other logo's found on this site are registered trademarks of their respective owners.