[c-nsp] Access-list Question
Paul Stewart
paul at paulstewart.org
Mon May 14 12:01:04 EDT 2007
Ah crap..;) Thanks everyone for the replies....
Note to self - don't work on access-lists after a "long" weekend...hehee...
Paul
-----Original Message-----
From: Voll, Scott [mailto:Scott.Voll at wesd.org]
Sent: Monday, May 14, 2007 11:50 AM
To: Paul Stewart; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Access-list Question
Don't use subnet mask...... need to use Wildcard.
IE>
access-list 100 permit ip host xxx.xxx.xxx.64 yyy.yyy.yyy.yyy 0.0.0.63
Scott
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Paul Stewart
Sent: Monday, May 14, 2007 8:37 AM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Access-list Question
Ok... I know I had a rough weekend but I don't get this..
Creating a new access-list for an interface on a 2621 router:
access-list 100 permit ip host xxx.xxx.xxx.64 yyy.yyy.yyy.64
255.255.255.192
I want to permit access from one particular host to the
yyy.yyy.yyy.64/26
subnet...
When I do a "show run" I see this:
access-list 100 permit ip host xxx.xxx.xxx.64 0.0.0.0 255.255.255.192
Why? ;)
Thanks,
Paul
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list