Forum Discussion
NimbostratusHow to give network access and limit to ACL
I am trying to figure out how to give uses access to network and limit them to only see certain ACL.
but there is the catch, when I configure the network access via the wizard I am doing split tunnel where I have mentioned the entire network i.e 192.168.0.0/255.255.0.0 but I only want use to access some part of that entire netwrok i.e 192.168.100.0/255.255.255.192. I thought I can do that easily via ACL but when I assign ACL to network access use can stil ping any machine that belongs to 192.168.0.0/255.255.0.0.
Can someone please let me know how I can do this?
Thanks
3 Replies
Samir_Jha_52506Noctilucent
Is it Cisco Network device? yes Apply below access list
--> Step 1access-list 10 permit ip 192.168.100.0 0.0.0.63
--> Step 2access-list 10 deny ip 192.168.0.0 0.0.255.255Make sure, Please don't miss the Steps.
int
Interface_nameip access-group 10 out
If using F5 APM, Please let me know.
- mr_evil_116524HI Samir, I need to do this on F5 and yes you are right possibly using APM. But how? Using Dynamic ACL ?? Thanks
- Samir_Jha_52506
Hi, I never implemented above scenario in F5 APM. Please go through these Link
