What would a good MATCH line for "ALL TRAFFIC INCOMING" be? And can I make the SET NEXT-HOP be an interface on the same LAN segment as the Ethernet interface of the router?
Currently (as a test) I am creating an ACL for "DENY TCP ANY ANY" as a match (because I was informed that an ACL can be match criteria) and SET IP NEXT-HOP 192.x.x.x and people on the internet can still access that LAN via HTTP (TCP 80)
Please note I am a total newbie to this stuff...
Matt
Currently (as a test) I am creating an ACL for "DENY TCP ANY ANY" as a match (because I was informed that an ACL can be match criteria) and SET IP NEXT-HOP 192.x.x.x and people on the internet can still access that LAN via HTTP (TCP 80)
Please note I am a total newbie to this stuff...
Matt
