[c-nsp] non-CIDR netmasks in ACLs
Gert Doering
gert at greenie.muc.de
Wed May 18 03:42:05 EDT 2005
Hi,
On Tue, May 17, 2005 at 11:02:53PM -0400, Robert E.Seastrom wrote:
> while i wouldn't be surprised if there were code in tcp stacks that
> didn't deal well with discontiguous netmasks (the stack itself should
> be ok, but "longest match" in the routing code could take on a whole
> new meaning with discontiguous netmasks), i would be equally surprised
> if ACLs with any setting of the wildcard bits your heart desires
> didn't work.
Discontiguous *netmasks* have not been allowed in IOS for some years.
So - no confusion regarding "longest match" on the routing side.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the cisco-nsp
mailing list