[nsp] Access List question

• Next message: Jay Stewart: "[nsp] include command?"
• Previous message: jay: "[nsp] 7500 mamimum throughput"
• Next in thread: Danny McPherson: "Re: [nsp] Access List question"
• Maybe reply: Danny McPherson: "Re: [nsp] Access List question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Hi all

We have 2 ip blocks, 192.168.0.0/24 and 192.168.1.0/26.
The first block, the /24, is all utilised in Cape Town, where our
servers are.
The second block, the /26, is in our Johannesburg office and is used for
dialups there.

I have an access list 111 applied to my one serial interface on my 3640
router down in Cape Town, as follows:
access-list 111 deny ip 192.168.0.0 0.0.0.255 any log
access-list 111 deny ip 192.168.1.0 0.0.0.63 any log

The /26 is routed down to us via our upstream's backbone.

Question: Is the second line of the above access list going to work?
Wouldn't our router see this as an attempt to spoof, and deny the
packets?

TIA
/wiZZ

• Next message: Jay Stewart: "[nsp] include command?"
• Previous message: jay: "[nsp] 7500 mamimum throughput"
• Next in thread: Danny McPherson: "Re: [nsp] Access List question"
• Maybe reply: Danny McPherson: "Re: [nsp] Access List question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:08 EDT