The 0.0.0.1 wildcard permits hosts 192.168.99.18 and .19.
The rest of the syntax is: permit or deny FROM somewhere TO somewhere.
The first statement therefore permits FROM 192.168.99.18/19 using ports
1414-1416 going TO 192.168.95.50. This is probably not what you want.
The second permits traffic FROM ANY PORT on 192.168.99.18-19 TO ports
1414-1416 on .95.50.
In other words, each FROM and TO portion allows you to specify address,
wildcard, port range and (for tcp) established. Port range is assumed to be
'any port' if omitted.
Cheers,
--
Ben Nagy
Network Security Specialist
Marconi Services Australia Pty Ltd
Mb: +61 414 411 520 PGP Key ID: 0x1A86E304
> -----Original Message-----
> From: Mario Laniel [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, May 09, 2001 2:44 AM
> To: [EMAIL PROTECTED]
> Subject: Cisco ACL enlightments needed
>
>
> Hi all,
>
> Sorry to go off topics a little bit, but I need enlightments
> on syntax for ACL on Cisco routers.
>
> For example:
>
> permit tcp 192.168.99.18 0.0.0.1 host 192.168.95.90 range 1414 1416
> permit tcp 192.168.99.18 0.0.0.1 range 1414 1416 host 192.168.95.90
>
> Are those two examples the same or is it just me?
>
> Could somebody confirmed if I'm right or if there is a
> difference, what is it?
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
