Set match-group Proxy ext-acl 10 match-entry 10 Create a match group named “Proxy” with an ID of 10 containing our extended ACL. Set access-list extended 20 src-ip 192.168.168.253/32 dst-port 80-80 protocol tcp entry 20Ī match groups is a collection of one or more Extended ACL‘s, with a human-readable name. We also need to create an ACL so that our proxy server trafffic doesn’t get routed back to itself: Traffic on port 80 destined for a few subnets, in which case you’dĬreate an Extended ACL with multiple entries.Ĭreate an ACL matching traffic from the corporate network for outbound HTTP traffic: An extended ACL is the criteria for matching certain traffic eachĪCL can contain multiple matching rules.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |