Access-list question

From: Johnny Dedon (johnny.dedon@xxxxxxxxxx)
Date: Mon May 07 2001 - 18:23:54 GMT-3

• Next message: Rob Webber: "RE: Troubleshooting"
• Previous message: Jeff K.: "Re: NAT on a stick"
• Next in thread: adiment@xxxxxxxxxx: "RE: Access-list question"
• Maybe reply: adiment@xxxxxxxxxx: "RE: Access-list question"
• Maybe reply: Rob Hopkins: "Re: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Maybe reply: Shane Miles: "RE: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Maybe reply: Wayne Gustavus: "RE: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
If I am asked to only permit ftp sessions if established from a local subnet
and I must use an inbound access-list on that local interface, what woud it
look like?

something like this?
access-list 102 permit tcp host 10.10.10.1 gt 1023 199.200.1.0 0.0.0.255 eq
ftp established

Remember the question is inbound on the local interface not inbound on the
internet side.

Johnny Dedon
Senior Staff Consultant
Exodus Professional Services
johnny.dedon@exodus.net
www.exodus.net
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Rob Webber: "RE: Troubleshooting"
• Previous message: Jeff K.: "Re: NAT on a stick"
• Next in thread: adiment@xxxxxxxxxx: "RE: Access-list question"
• Maybe reply: adiment@xxxxxxxxxx: "RE: Access-list question"
• Maybe reply: Rob Hopkins: "Re: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Maybe reply: Shane Miles: "RE: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Maybe reply: Wayne Gustavus: "RE: Access-list question"
• Maybe reply: Mas Kato: "RE: Access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:30:35 GMT-3