[c-nsp] non-CIDR netmasks in ACLs
David J. Hughes
bambi at Hughes.com.au
Tue May 17 22:30:40 EDT 2005
>> IOS allows me to add an ACL like:
>> access-list 100 permit ip 1.2.96.4 0.0.15.0
>>
>> However.... "What will it break"? From the viewpoint of simply
>> tweaking
>> the bits, it looks valid, but... At the same time, I'd rather have a
>> single ACL statement for 16 hosts, not 16 lines.
>
> It'll work just fine.
I broke a PIX a couple of years ago using a discontiguous netmask but
that was fixed in a later release. Never tried it on anything else.
David
...
More information about the cisco-nsp
mailing list