Hello,
I have a CX 8325 switch.
I'm trying to write an acl which will allow all clients within my vlan to make tcp connections on the wider internet, ie http requests and ssh to external machines, but at the the same time i want to prevent machines outside of the vlan from initiating tcp connections into the vlan. I'm applying the acl on the vlan inbound .
I see that you specify the established flag when writing rules, but that seems to allow syn packets going into the network too ?
------------------------------
Mark McDonagh
------------------------------