Re: ACL - Single Satement

From: Ryan DeBerry (rdeberry@gmail.com)
Date: Sat Dec 13 2008 - 16:24:08 ARST

• Next message: Scott M Vermillion: "RE: RMON delta or absolute..."
• Previous message: Kelvin Yeo: "RE: ACL - Single Satement"
• Maybe in reply to: John Edom: "ACL - Single Satement"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

if you use 0 in the last octet, that allows for 0 hosts.

whats the wildcard mask for a /24

0.0.0.255

8 bits for host

right.

so lets say you put a 0 in the last octet

0.0.0.0

what would that mean?

standard subnet mask it would be 255.255.255.255 or /32

so if you do that in his example what are you left, rather what networks are
you really matching?

0.0.11.0

On Sat, Dec 13, 2008 at 1:10 PM, Kelvin Yeo <kelvinyeo24@yahoo.com.sg>wrote:

>
>
> I am abit confused about the usage whether to use '0' or '255' as the last
> octet. What scenario should either come into use?
>
> Rdgs,
> KY
>
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> John
> Edom
> Sent: 13 December 2008 23:00
> To: Ryan DeBerry
> Cc: Cisco certification
> Subject: Re: ACL - Single Satement
>
> Yes in that sense you are right but if i am using this acl in
> distribution-list to match networks/prefixs i am thinking in that way...
> because normal i have seen this kind of acls in route filtering.
>
> Regards
>
> On Sat, Dec 13, 2008 at 6:46 PM, Ryan DeBerry <rdeberry@gmail.com> wrote:
>
> > If that were the case how many hosts are you gonna have on those
> networks?
> >
> > NONE.
> >
> > Make sense?
> >
> >
> >
> > On Sat, Dec 13, 2008 at 9:38 AM, John Edom <jedom123@gmail.com> wrote:
> >
> >> hi
> >> Ryan/Sachin thanks for link and explaination. I am clear about 3 octate
> >> now just tell me what about 4 octate because we are matching bit by bit
> so
> >> since in last octate all 0's are match it should be 0 in wildcard rather
> >> then 255?
> >>
> >> Regards
> >>
> >>
> >> On Sat, Dec 13, 2008 at 6:31 PM, Ryan DeBerry <rdeberry@gmail.com>
> wrote:
> >>
> >>>
> >>>
>
> http://blog.internetworkexpert.com/2007/12/26/q-how-do-i-compute-complex-wil
> dcard-masks-for-access-lists/<http://blog.internetworkexpert.com/2007/12/26/q-how-do-i-compute-complex-wildcard-masks-for-access-lists/>
> >>>
> >>>
> >>> On Sat, Dec 13, 2008 at 9:31 AM, John Edom <jedom123@gmail.com> wrote:
> >>>
> >>>> Hi,
> >>>>
> >>>> Do anyone have some complex examples for batter understanding?
> >>>>
> >>>> Regards
> >>>>
> >>>>
> >>>> On Sat, Dec 13, 2008 at 6:28 PM, John Edom <jedom123@gmail.com>
> wrote:
> >>>>
> >>>>> hi,
> >>>>>
> >>>>> i think wildcard will be 0.0.11.0 because in forth octet all networks
> >>>>> have zeros so all match means 0.
> >>>>>
> >>>>> Third Octate
> >>>>> 0100
> >>>>> 0101
> >>>>> 0110
> >>>>> 0111
> >>>>> 1100
> >>>>> 1101
> >>>>> 1110
> >>>>> 1111
> >>>>> --------
> >>>>> 1011 - wildcard that is 11
> >>>>>
> >>>>> Correct me if i am wrong.......
> >>>>>
> >>>>> Regards
> >>>>>
> >>>>>
> >>>>> On Sat, Dec 13, 2008 at 6:09 PM, Ryan DeBerry
> <rdeberry@gmail.com>wrote:
> >>>>>
> >>>>>> I think it should be
> >>>>>>
> >>>>>> 192.168.4.0 0.0.11.255
> >>>>>>
> >>>>>> Third octet has last 4 in common
> >>>>>>
> >>>>>> 8-4-2-1
> >>>>>>
> >>>>>> 4 is always on so wild card mask it would be off.
> >>>>>>
> >>>>>> 8+2+1=11
> >>>>>>
> >>>>>> On Sat, Dec 13, 2008 at 7:42 AM, John Edom <jedom123@gmail.com
> >wrote:
> >>>>>>
> >>>>>>> Hi,
> >>>>>>>
> >>>>>>> can we write these all network in single ACL line
> >>>>>>>
> >>>>>>> 192.168.4.0
> >>>>>>> 192.168.5.0
> >>>>>>> 192.168.6.0
> >>>>>>> 192.168.7.0
> >>>>>>>
> >>>>>>> 192.168.12.0
> >>>>>>> 192.168.13.0
> >>>>>>> 192.168.14.0
> >>>>>>> 192.168.15.0
> >>>>>>>
> >>>>>>> Regards
> >>>>>>>
> >>>>>>>
> >>>>>>> Blogs and organic groups at http://www.ccie.net
> >>>>>>>
> >>>>>>>
> >>>>>>>
> _______________________________________________________________________
> >>>>>>> Subscription information may be found at:
> >>>>>>> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
> No virus found in this incoming message.
> Checked by AVG - http://www.avg.com
> Version: 8.0.176 / Virus Database: 270.9.17/1846 - Release Date: 12/12/2008
> 6:59 PM

Blogs and organic groups at http://www.ccie.net

• Next message: Scott M Vermillion: "RE: RMON delta or absolute..."
• Previous message: Kelvin Yeo: "RE: ACL - Single Satement"
• Maybe in reply to: John Edom: "ACL - Single Satement"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jan 01 2009 - 12:53:08 ARST