Guys,
R2 is connected to SW2 and the very basic configuration is as follows. This seems to be simple but in limited time i could not get it.
R2-----SW2
R2#sh run int f0/0
interface FastEthernet0/0
ip address 192.10.20.2 255.255.255.0
ip access-group 100 in
duplex auto
speed auto
end
R2#sh ip access-lists
Extended IP access list 100
10 permit icmp any any
20 permit ip any any
SW2#sh run int f0/2
interface FastEthernet0/2
switchport access vlan 22
switchport mode access
spanning-tree portfast
end
SW2#sh run int vlan 22
interface Vlan22
ip address 192.10.20.8 255.255.255.0
ip access-group 100 in
end
SW2#sh ip access-lists
Extended IP access list 100
10 permit icmp any any
20 permit ip any any
It shows correct access list counters at SW2 when pinging from R2.
R2#ping 192.10.20.8
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.10.20.8, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/3/4 ms
SW2#sh ip access-lists
Extended IP access list 100
10 permit icmp any any (5 matches)
20 permit ip any any
But when ping from SW2 to R2. On R2 it shows thriple access list counters. Why ?
SW2#ping 192.10.20.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.10.20.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/9 ms
R2#sh ip access-lists
Extended IP access list 100
10 permit icmp any any (15 matches)
20 permit ip any any
Appreciate your responses
Regards,
