Question : Block ports with ACL on 2600

I need to block quite a few ports outbound on my 2600 router. Would I put this ACL on the E0 interface (closest to our LAN)? Also, is there any way to create an ACL with multiple consecutive ports? For example if I need to block ports 564-586 do I need to create an ACL entry for each udp and tcp port?

Answer : Block ports with ACL on 2600

If you want to block outbound, you could put the ACL on any interface depending on the command you used. It would be most logical however to put it on the inside interface (the one that acts as the gateway for your LAN, or the closest to the LAN as you said)

You would just use the following command if E0 was that interface:

ip access-group 101 in

You specify "in" since traffic will be coming into that interface, if you put this access list on the outside, you would use "out" since the traffic would be going out.

Random Solutions

Chrome reports that some resources are not secure, all other browsers ok.

How to correct time on CISCO IP phones

VNC lock machine??

How to use a Netgear WNR2000 Wireless Router JUST as an access point

How do I join a domain over a VPN tunnel?

Moving user accounts in windows 2000

Basics about Novell Netware

D-link router not connecting once security features activated.

ODBC Connection to SQL (MSDE)