[c-nsp] Cisco ACL wildcard convert to object-group subnetmask

Satish Patel Mon, 03 Oct 2016 15:13:00 -0700

I have following ACL

access-list 101 permit tcp any 192.168.100.0 0.0.0.127 eq www
access-list 101 permit tcp any 192.168.100.128 0.0.0.191 eq smtp
access-list 101 permit tcp any 192.168.100.192 0.0.0.255 eq ftp


I want to convert them in object-group style ACL so what subnet mask i
should use?

Do you think following subnet mask are correct according above wildcard?

object-group network WWW-ACL
   192.168.100.0 255.255.255.128

 object-group network SMTP-ACL
   192.168.100.128 255.255.255.192


 object-group network FTP-ACL
    192.168.100.192 255.255.255.192   <--- i don't know how does this
interpret? looks wierd to me
_______________________________________________
cisco-nsp mailing list  cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

[c-nsp] Cisco ACL wildcard convert to object-group subnetmask

Reply via email to