Seems GRE has its own protocal number. So you have to allow GRE as well as IP just in case.Mavin,please correct me if I'm wrong Thot
From: [EMAIL PROTECTED]: [email protected]; [EMAIL PROTECTED]: Sat, 31 May 2008 16:36:42 -0400Subject: Re: [OSL | CCIE_RS] Access-List on ASA IP is a superset, which includes TCP, UDP, GRE, and other protocols. IP can be used for either ASA or IOS ACLs. Marvin Greenlee, CCIE #12237 (R&S, SP, Sec)Senior Technical Instructor - IPexpert, Inc.Telephone: +1.810.326.1444Fax: +1.810.454.0130 Mailto: [EMAIL PROTECTED] Join our free online support and peer group communities: http://www.IPexpert.com/communities IPexpert - The Global Leader in Self-Study, Classroom-Based, Video On Demand and Audio Certification Training Tools for the Cisco CCIE R&S Lab, CCIE Security Lab, CCIE Service Provider Lab, CCIE Voice Lab and CCIE Storage Lab Certifications. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of ZEESHAN SANAULLAHSent: Saturday, May 31, 2008 4:10 PMTo: [email protected]; [EMAIL PROTECTED]: [OSL | CCIE_RS] Access-List on ASA Dear All ,When using acls on ASA , when we use protocol IP ... does this also include TCP or UDP ... or we have to use TCP acls or UDP acls..for example permit ip host a.b.c.d host x.y.w.z does this also include tcp and udp or we have to use all there protocols to allow full accessand what IOS Aclsthanx Change the world with e-mail. Join the i’m Initiative from Microsoft. _________________________________________________________________ Give to a good cause with every e-mail. Join the i’m Initiative from Microsoft. http://im.live.com/Messenger/IM/Join/Default.aspx?souce=EML_WL_ GoodCause
