If you do this:
access 1 permit 10.10.15.0 0.0.0.255
There is an implicit deny after this, so it would block all the networks listed below except for the permitted. Now if you are asked to define the ACL to block the odd numbered networks, then yes, you did it right, but I would do this:
access 1 deny 10.10.1.0 0.0.14.255
access 1 permit 10.10.15.0 0.0.0.255
Jeffrey Biggs
CCIE #21127 (R&S)
Sr. Network Engineer, M/CIO/BIE
Cachendo, LLC
Globecomm Systems Company
240-646-5003
jbiggs_at_usaid.gov
jeff.biggs_at_Cachendo.com
-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of Taufik Kurniawan
Sent: Friday, June 18, 2010 10:04 AM
To: Cisco certification; cisco_at_groupstudy.com
Subject: Match access list ...
Hi,
kindly confirm ...
1. I want to deny the traffic from the following networks 10.10.1.0,
10.10.3.0, 10.10.5.0, 10.10.7.0, 10.10.9.0, 10.10.11.0 and 10.10.13.0 with
all /24
and I am doing this ....
ip access 1 permit 10.10.15.0 0.0.0.255
ip access 1 deny 10.10.1.0 0.0.14.255
please kindly confirm, am i doing right ?
thanks
Blogs and organic groups at http://www.ccie.net
Received on Fri Jun 18 2010 - 11:11:04 ART
This archive was generated by hypermail 2.2.0 : Sun Aug 01 2010 - 09:11:37 ART