From: stephen skinner (stephenski@gmail.com)
Date: Tue Oct 21 2008 - 07:12:15 ARST
Hello,
i have another quick question , if i may
i am allways getting confused as to the direction of my ACL in pattern
matching. and wanted some help please
Network A-----R1----S0/0(rest of my pod)
Q , configure R1 so that Web traffic coming from Network A going to your
network is marked with X
in regards to the ACL , would the right answer be
1.
ip access-list extended WWW
permit tcp 1.1.1.0 0.0.0.255 eq www any
int s0/0
service policy OUTBOUND WWW
or
2.
ip access-list extended WWW
permit tcp 1.1.1.0 0.0.0.255 any eq www
int s0/0
service policy OUTBOUND WWW
i think i should mark against HTTP traffic coming from the source network
1.1.1.0/24 , and going to any destination. Answer 1
and not all traffic from the source network 1.1.1.0.24 going to any
destination , that is HTTP traffic Answer 2
can someone please double check my thinking
many thanks
---------------
Only two things are infinite, the universe and human stupidity, and I'm not
sure about the former.
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sat Nov 01 2008 - 15:35:21 ARST