[nsp] acl: how to suppress keyword for service in acl?

Tony Li tony.li at tony.li
Thu May 6 06:09:52 EDT 2004


If it's helpful, all of the names are official names for the well known
ports.  Thus, another possible reference is the IANA port number pages.
No telling, of course, whether or not IOS will be able to stay up
to date.

Tony



On May 6, 2004, at 1:25 AM, Jochen Kaiser wrote:

> Hmmm.
>
> Is there an official place on the CCO site to get the cisco 
> /etc/service
> alike file which is used for the keyword names? So I can get it per 
> http
> and link it with my application each time a new version appeares.
>
> Another help could be an official acl-syntax definition. At the moment,
> we lex/yacc our own acl language to do an offline check before applying
> the acls. This is ok and works, but it would be better to have access
> to an official electronic definition.
>
> regards,
> JK
> -- 
> Dipl. Inf. Jochen Kaiser, GPG 0x3C93A870, phone +49 9131 85-28681
> Network Administration  mailto:jochen.kaiser at rrze.uni-erlangen.de
> Regionales Rechenzentrum Universitaet Erlangen-Nuernberg, Germany
> Homepage and PublicKey: http://ipv6.rrze.uni-erlangen.de/~unrz111
>
> On Wed, May 05, 2004 at 07:24:52PM +0200, Oliver Boehmer (oboehmer) 
> wrote:
>>>
>>> is there a way to suppress the service keyword for the port in
>>> cisco access-lists?
>>
>> i.e. print "permit tcp ... eq 25" instead of "... eq smtp"?
>> No, there is no way to prevent IOS from printing the keyword..
>>
>> 	oli
>>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>



More information about the cisco-nsp mailing list