sage -
From: garrett allen
Date: Sunday, April 6, 2003 0:01 am
Subject: acl question
> it's midnite, i'm bored, outta beer and my head is starting to
> hurt
> from too many random thoughts about what should be a simple acl.
> i've
> sufficiently banged my head a
""John Neiberger"" wrote in message
news:[EMAIL PROTECTED]
> > Hello,
> > Can any explain what these EXACTLY mean?
> >
> > ip as-path access-list 1 permit _109_
>
> Matches any prefix that passed through AS 109.
the book answer is that the underscore _ matches a lot of things including
the beginn
> Hello,
> Can any explain what these EXACTLY mean?
>
> ip as-path access-list 1 permit _109_
Matches any prefix that passed through AS 109.
> ip as-path access-list 2 permit _200$
Matches any prefix that originated in AS 200.
> ip as-path access-list 2 permit ^100$
Matches any prefix that onl
Hello,
Can any explain what these EXACTLY mean?
ip as-path access-list 1 permit _109_
ip as-path access-list 2 permit _200$
ip as-path access-list 2 permit ^100$
Thank you.
Sincerely,
CN
_
Add photos to your messages with MSN 8
I'm not sure I quite understand the question, but based on what I think is
being asked, I would say that allowing only traffic addressed from the
local lan to enter the router through the local ethernet interface would
prevent anyone on the local lan from using a spoofed address to launch and
atta
keep in mind this kind of security can easily be bypassed by using NAT,
so it is one of many things you can and need to do in order to secure your
network.
HTH,
Casey
>From: [EMAIL PROTECTED]
>Reply-To: [EMAIL PROTECTED]
>To: [EMAIL PROTECTED]
>Subject: ACL question
>Date: Mon, 25
What are the advantages/disadvantages/logic behind creating an access list
that would permit only the local subnet to access and enter a router's one
and only ethernet LAN interface? For instance, if one creates E0 to have
IP address 192.168.16.1/24 would it be sensible to create an access list
My newsgroup reader "claims" to have posted my response to this when it was
first asked. And for the record, I did have the correct answer and
explanation too =P. So instead of posting yet another explanation on how to
filter odd/even IP addresses, I'll post a similar but different question:
Ma
To: [EMAIL PROTECTED]
Subject: Re: ACL Question
Shouldn't it, for maximum elegance, be "Permit 0.0.0.0 255.255.255.254"? Not
that it winds up mattering, but "2" is the 7th bit of the octet, not the
8th; it'll be wildcarded out. Any even number would work, of co
t 1.
> -Original Message-
> From: [EMAIL PROTECTED] ("Daniel Ma")
> [mailto:[EMAIL PROTECTED]]
> Posted At: Monday, June 26, 2000 9:02 AM
> Posted To: cisco
> Conversation: ACL Question
> Subject: Re: ACL Question
>
>
> Will this do?
>
> access-lis
d numbered addresses.
That is a quick answer for a MOnday morning.
HTH,
Charles
-Original Message-
From: [EMAIL PROTECTED] ("Raymond Everson (Rainman)")
[mailto:[EMAIL PROTECTED]]
Posted At: Saturday, June 24, 2000 9:20 AM
Posted To: cisco
Conversation: ACL Question
Subject: A
Will this do?
access-list 1 permit x.x.x.2 255.255.255.254
Daniel
"Raymond Everson (Rainman)" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> *Still* haven't figured this one out:
>
> Create an IP ACL, in as few lines as possible of course, which permits
> o
*Still* haven't figured this one out:
Create an IP ACL, in as few lines as possible of course, which permits
only even-numbered IP addresses.
Ideas?
Rainman
___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscri
13 matches
Mail list logo