[f-nsp] ACL's doesnt work
Calle Lidström
calle at swip.net
Mon Sep 27 04:12:31 EDT 2004
Hi,
I have a BigIron 4000 running 07.7.01cT53 that the ACL's stops working
on, it sounds a bit weird.. :-)
When I apply the ACL f00-out, everything is working as expected but
after ~10 hours 0/0 can connect to 10.1.1.2, any port/protocol.
I need to re-apply the access-grup statement on the interface for the
ACL to become "active" again.
Have anyone seen this problem before?
!
interface ethernet 1/2
port-name m00-f00
route-only
ip access-group f00-out out
ip address 10.1.1.1 255.255.255.252
!
ip access-list extended f00-out
permit tcp host 10.2.1.1 host 10.1.1.2 eq 26
deny ip any any
Calle
--
Calle Lidström <calle at swip.net>
CDBF CE81 EC99 BB2B 2E2A 7643 EEC1 0F3A 75E9 0D2C
More information about the foundry-nsp
mailing list