Cisco 827 v4

[DManigo]

Please help as I cannot add an additional access-list to my current config.I have a web server I need to allow anonymous access to the webpages. The website ( for arguement sake) is statically assigned to 192.168.1.3

!ip nat inside source static tcp 192.168.1.3 80 63.162.201.1 80 extendable
!access-list 1 permit 192.168.1.0 0.0.0.255

I need to add an access-list to the server, I tried:

!access-list 101 permit 192.168.1.3 0.0.0.255 (or)
!access-list 1 permit 192.168.1.3 0.0.0.255

The router would not accept either command. can anyone tell me what I'm doing wrong and point me in the right direction.

Thanks

 

[JOAMON]

1st for access list 101 it is an extended access list so the statement would need to be
access-list 101 permit (ip, tcp, or udp)
after that you are using a specific ip with a non-sepcific mask should be 192.168.1.3 0.0.0.0
lastly and extended access list need a destination.

might probably look like:
access-list 101 permit tcp any eq 80 host 192.168.1.3 eq 80
this would then need to be applied the the outside interface as an inbound rule.

the reason access-list 1 permit 192.168.1.3 0.0.0.255 does not work is the mask and the fact the it already exists for the entire subnet.
ener:
no access-list 1
access-list 1 permit 192.168.1.3 0.0.0.0 or
access-lsit 1 permit 192.168.1.3