04-22-2013 03:15 AM
I have a Student VLAN and an IT Services VLAN
I wish to be able to TCP from IT to student, but do not wish to be able to TCP from Student to IT Services
I have tried using
access-list 101 permit source destination established
but this allows tcp in both directions, unless I have the syntax wrong or have missed something.
do I need to add things like gt 1023 or ACK,RST