[c-nsp] non-CIDR netmasks in ACLs
Jon Lewis
jlewis at lewis.org
Tue May 17 13:13:35 EDT 2005
On Tue, 17 May 2005, Rick Ernst wrote:
>
> I have a set of IP addresses (outside of my control) that need to be passed
> through an ACL. Instead of being in a convenient block, they are in the
> form of 1.2.x.4, with x being 96-111.
>
> IOS allows me to add an ACL like:
> access-list 100 permit ip 1.2.96.4 0.0.15.0
>
> However.... "What will it break"? From the viewpoint of simply tweaking
> the bits, it looks valid, but... At the same time, I'd rather have a
> single ACL statement for 16 hosts, not 16 lines.
It'll work just fine.
----------------------------------------------------------------------
Jon Lewis | I route
Senior Network Engineer | therefore you are
Atlantic Net |
_________ http://www.lewis.org/~jlewis/pgp for PGP public key_________
More information about the cisco-nsp
mailing list