From: Snow, Tim (timothy.snow@eds.com)
Date: Mon Oct 06 2003 - 06:40:56 GMT-3
Close.
The first one denies a source of 142.220.1.0 -> 142.220.1.15 source port GT
1023 to ANY destination (any port)
The second one denies a source of 142.220.1.0 -> 142.220.1.15 (all ports) to
Designation with port gt 1023
The keyword of ANY applies to the subnets (source or destination), if you
leave out the GT or LT then it equals all ports.
Tim
#12042
-----Original Message-----
From: Ken.Farrington@barclayscapital.com
[mailto:Ken.Farrington@barclayscapital.com]
Sent: Monday, October 06, 2003 5:32 AM
To: ccielab@groupstudy.com
Subject: Simple ACL query
Is
deny tcp 142.220.1.0 0.0.0.15 gt 1023 any
the same as
deny tcp 142.220.1.0 0.0.0.15 any gt 1023
I read the first one as being deny anything from the 0-15 range with a
SOURCE port of GT1023 to any DESTINATION IP address. I read the second one
as deny anything from the 0-15 range on ANY SOURCE port to any DESTINATION
IP address on DESTINATION ports GT1023
Please can we just confirm this small thing.
Many thx
------------------------------------------------------------------------
For more information about Barclays Capital, please
visit our web site at http://www.barcap.com.
Internet communications are not secure and therefore the Barclays
Group does not accept legal responsibility for the contents of this
message. Although the Barclays Group operates anti-virus programmes,
it does not accept responsibility for any damage whatsoever that is
caused by viruses being passed. Any views or opinions presented are
solely those of the author and do not necessarily represent those of the
Barclays Group. Replies to this email may be monitored by the Barclays
Group for operational or business reasons.
------------------------------------------------------------------------
***Get your CCIE and a FREE vacation: Shop.GroupStudy.com***
This archive was generated by hypermail 2.1.4 : Mon Nov 24 2003 - 07:52:57 GMT-3