Your last idea is correct. You can't accomplish both goals in a single
line. Place a specific deny statement at the beginning, followed by the
summarized permit statement.
John
> Hi,group.
> I'd like to verify if there is a way to define a mask to summarise this.
> Basically, i'd like to be able to summarise range 172.18.0.0 to
172.31.0.0
> with
> a mask so I'll have one entry on the access-list. I can see doing a
> 172.16.0.0
> 0.0.15.255, however i want to EXCLUDE 172.17.0.0 networks.
> If this is not possible, perhaps I should just put a permit 172.17.0.0
prior
> to deny 172.16.0.0 0.0.15.255??
> Thanks for the replies.
>
> Elmer Deloso
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
_______________________________________________________
Send a cool gift with your E-Card
http://www.bluemountain.com/giftcenter/
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]