Extended access-list question

From: Jason Wydra (jasonwydra@yahoo.com)
Date: Wed Apr 16 2003 - 05:06:59 GMT-3

• Next message: Jason Wydra: "What does this line in the access list do?"
• Previous message: Pieter Scheepers - CPX SS: "Frame Relay Backup Interface"
• Next in thread: Tim Fletcher: "Re: Extended access-list question"
• Maybe reply: Tim Fletcher: "Re: Extended access-list question"
• Maybe reply: Brian Dennis: "RE: Extended access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The object with the list below is to block input telnet, http and bgp on the input of all interfaces that it's assigned to. My question is why doesn't BGP need to be blocked in both directions? I've seen this with other protocols too. Some have blocks in both directions and some don't. Probably an easy answer to this. Thanks,Jason Wydra access-list 115 permit tcp any any eq telnet
access-list 115 permit tcp any eq telnet any
access-list 115 permit tcp any any eq www
access-list 115 permit tcp any eq www any
access-list 115 permit tcp any any eq bgp

---------------------------------
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.

• Next message: Jason Wydra: "What does this line in the access list do?"
• Previous message: Pieter Scheepers - CPX SS: "Frame Relay Backup Interface"
• Next in thread: Tim Fletcher: "Re: Extended access-list question"
• Maybe reply: Tim Fletcher: "Re: Extended access-list question"
• Maybe reply: Brian Dennis: "RE: Extended access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu May 01 2003 - 13:35:53 GMT-3