Re: Access List

From: pbubienczyk@szczesliwice.pl
Date: Fri Feb 06 2004 - 06:46:55 GMT-3

• Next message: Marko Berend: "cat 3550 L3 Port security"
• Previous message: richardyun@adelphia.net: "Access List"
• Maybe in reply to: richardyun@adelphia.net: "Access List"
• Next in thread: Winston V. Shaw: "Re: Access List"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello
  There is no way to block ONLY this networks with 2 access-lists statements.
  With overlaping networks you could write your access-list with one line (but
it'll overlap 16384 networks) :
    permit 104.0.0.0 23.59.55.0 - if my manual calculatioms are correct :)
  or with two (summarizing 1st add with 3rd and 2nd with 4th) :
    permit 112.2.1.0 3.41.50.0
    permit 111.16.6.0 16.8.0.0

  there is a nice acces-list white paper on internetworkexpert site

hth - pb

Quoting richardyun@adelphia.net:

> Hello,
>
> How can I block the following networks from going out of particular interface
>
> (say serial 1 on a router) using just two lines for access-list ?
>
> 121.10.17.0
> 127.24.6.0
> 122.35.35.0
> 111.16.6.0
>
> Thanks,
>
> Richard
>
> _______________________________________________________________________
> Please help support GroupStudy by purchasing your study materials from:
> http://shop.groupstudy.com
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Marko Berend: "cat 3550 L3 Port security"
• Previous message: richardyun@adelphia.net: "Access List"
• Maybe in reply to: richardyun@adelphia.net: "Access List"
• Next in thread: Winston V. Shaw: "Re: Access List"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Mar 05 2004 - 07:13:47 GMT-3