You don't have to configure routes on the router for the client and
server because they are directly connected on the router and so the
router knows these routes!
Make a "show ip route" after deconfigure the two ip routes, you'll see
the router knows these routes!
For the access-list if you want to filter the flow between the client
and server you can write
on eth0:
--------
ip access-group 30 out
ip access-group 130 in
on eth1:
--------
ip access-group 31 out
ip access-group 131 in
ACL 30-130
==========
#Outbound
no access-list 30
access-list 30 permit ip host 192.168.110.5 #Full ip from Server
access-list 30 deny ip any any # to exclude everything not allowed
# Inbound (For example if you only want to allow web access)
no access-list 130
access-list 130 permit tcp host 172.24.100.1 host 192.168.110.5 eq 80
#http
access-list 130 permit tcp host 172.24.100.1 host 192.168.110.5 range
440 445 #https
access-list 130 deny ip any any #to exclude everything not allowed.
ACL 31-131
==========
#Outbound
no access-list 31
access-list 31 permit ip host 172.24.100.1 #Full ip from client
access-list 31 deny ip any any # to exclude everything not allowed
# Inbound (For example if you only want to allow web access)
no access-list 131
access-list 131 permit tcp host 192.168.110.5 eq 80 host
172.24.100.1 #http
access-list 131 permit tcp host 192.168.110.5 range 440 445 host
172.24.100.1 #https
access-list 131 deny ip any any #to exclude everything not allowed.
I hope it's what you want, your mail is not very clear on want you
really want to know.
>Do you have IP routing enabled on the box ?. If not in global config
mode
>issue the command "ip routing".
>
>HTH,
>Roshan.
>
>"GuidoB." wrote:
>
>> Hi there,
>>
>> I'm new to the firewall & routing bussiness. Yesterday & today i
spent a
>> lot of time trying to figure out routing on a Cisco 2514. I have some
>> books on my side (Cisco CCNA books) but can't figure out what i
should
>> do to get the thing routing.
>> The situation is this:
>> Eth0 -> 192.168.110.6 255.255.255.252 with a server 192.168.110.5
>> 255.255.255.252 Ip broadcast 192.168.110.7 No ip direct broadcast
>> Eth1 -> 172.24.245.1 255.255.0.0 with a client 172.24.100.1
255.255.0.0
>> No ip direct broadcast
>> Lo0 -> 192.168.0.1 255.255.255.0
>> Rest of the Interfaces are shutdown
>>
>> Router RIP
>> Network 172.24.0.0
>> Network 192.168.0.0
>>
>> Ip route 172.24.100.0 255.255.255.0 Eth1
>> Ip route 192.168.110.4 255.255.255.252 Eth0
>>
>> Can somebody give some hints how to get the client & server talking.
I'm
>> gonna take a course in this but there's no time now.
>>
>> Greetz,
>>
>> GuidoB.
>> -
>> [To unsubscribe, send mail to [EMAIL PROTECTED] with
>> "unsubscribe firewalls" in the body of the message.]
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
>
>
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
