Time Range ACLs - 17:59 or 18:00 ???

From: darbyweaver@yahoo.com
Date: Tue May 30 2006 - 00:04:36 ART

• Next message: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Previous message: Victor Cappuccio: "RE: what is a bia ?"
• Next in thread: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: Marvin Greenlee: "Re: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: ZeroFlash: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I was wondering what the general consensus was with regard to Time-Range ACLs.

If I wanted to do the following:

Don't permit ftp traffic during weekdays from 18:00 to 06:00.

conf t
ip access-list extended FTP_TOD
deny tcp any any eq www time-range FTP_DAYS
permit ip any any
exit

time-range FTP_DAYS
periodic weekday 18:00 to 05:59
exit

int F0/0
ip access-group FTP_TOD in

or would be this be more accurate:

conf t
ip access-list extended FTP_TOD
deny tcp any any eq www time-range FTP_DAYS
permit ip any any
exit

time-range FTP_DAYS
periodic weekday 18:00 to 06:00
exit

int F0/0
ip access-group FTP_TOD in

• Next message: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Previous message: Victor Cappuccio: "RE: what is a bia ?"
• Next in thread: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: Scott Morris: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: Marvin Greenlee: "Re: Time Range ACLs - 17:59 or 18:00 ???"
• Maybe reply: ZeroFlash: "RE: Time Range ACLs - 17:59 or 18:00 ???"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 01 2006 - 06:33:22 ART