From: Yurchenko, Michael (michael.yurchenko@xxxxxxxxxxx)
Date: Thu Jan 25 2001 - 11:24:22 GMT-3
TCP and UDP use IP as a network-layer protocol, and TCP and UDP traffic is
encapsulated inside IP packets. So, if you permit IP traffic, the
access-list will permit all IP packets which would include TCP, UDP, ICMP
(which coincidentally also uses IP packets, as are all other protocols of
TCP/IP stack), and so on.
Michael Yurchenko
CCIE# 6695, CCDP, CCNP ATM Specialist, MCSE
Customer Support Engineer - 2
michael.yurchenko@verizon.com
610-407-2154
-----Original Message-----
From: radha rani [mailto:radhaccie@hotmail.com]
Sent: Thursday, January 25, 2001 9:17 AM
To: andrew.2.shore@bt.com
Cc: ccielab@groupstudy.com
Subject: RE: Access-list
So what's the difference between permitting 'ip' and permitting 'tcp'?
>From: andrew.2.shore@bt.com
>To: radhaccie@hotmail.com
>Subject: RE: Access-list
>Date: Thu, 25 Jan 2001 14:04:15 -0000
>
>yes, as you have permitted all ports between the two hosts.
>
>
>access-list 110 permit ip host 10.10.10.10 host 20.20.20.20 eq telnet
>
>will only allow telnet between the hosts
>
>Andrew Shore
>BTcd
>Information Systems Engineering
>Internet & Multimedia
>
>
>-----Original Message-----
>From: radha rani [mailto:radhaccie@hotmail.com]
>Sent: 25 January 2001 13:34
>To: ccielab@groupstudy.com
>Subject: Access-list
>
>
>HI all,
>I have a simple ACL question. If I have an ACL that is configured as
>follows :
>access-list 110 permit ip host 10.10.10.10 host 20.20.20.20
>
>Will tcp packets such as ftp/telnet be permitted? I thought not, but I'm
>not 100% certain. I appreciate your help. Thx.
>
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:27:43 GMT-3