it will allow dns requests destined for the 194.172.253.0 255.255.255.128
network. It will not allow people on that network to get dns form elsewhere
as the source port in their request will be a random number 1024 or above,
so when the response comes back it will come back to that random port
instead of port 53. It will block all other traffic.
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, September 07, 2001 12:20 PM
To: [EMAIL PROTECTED]
Subject: access list again [7:19006]
what will be the result of this
access-list 101 permit udp any 194.172.253.0 0.0.0.127 eq domain
access-list 101 deny icmp any any redirect
access-list 101 deny ip 127.0.0.0 0.255.255.255 any
access-list 101 deny ip 224.0.0.0 31.255.255.255 any
access-list 101 deny ip host 0.0.0.0 any
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=19009&t=19006
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
