Problem solve Get help with specific problems with your technologies, process and projects.

How do I apply an access-list to a router?

Learn how to apply an access-list to a router in this Ask the Expert response from our network routing and switching expert, Sudhanshu Gupta.

How do I apply an access-list to a router so that general HTTP traffic is not affected?
If I understand correctly, you want to allow only HTTP traffic. You can do this in two ways: the same by two statements, last one need not necessarily be put in the router but the first one should be.

Access-list 101 permit ip (source ip block) (subnet mask) (destination ip block) (subnet mask) eq 80

If you are not concerned about detination than you can say

Access-list 101 permit ip any any eq 80

Last statement, which is inherent, denies anything that does not match these. Also please check the exact syntax. Once done you need to call these statements on the interface by using "ip access-group 101" under your interface configuration.

This was last published in January 2006

Dig Deeper on Network management and monitoring

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.