Home page logo
/

firewall-wizards logo Firewall Wizards mailing list archives

Re: cisco config help
From: Luca Berra <bluca () comedia it>
Date: Fri, 25 May 2001 23:50:14 +0200

[moderator: i know i am the thousandth, so kill me if you like]

access list on cisco do not use netmasks, but wildcard-bits
(netmask reversed), so you should write:
access-list 101 deny ip 63.101.102.0 0.0.0.127 any

On Sat, May 26, 2001 at 12:46:44AM +1000, Stuart Clark wrote:
Hi,
I am trying to make an access-list on my Cisco 3620.

I type 'access-list 101 deny ip 63.101.102.0 255.255.255.128 any'

The only problem is that the cisco converts 63.101.102.0 to 0.0.0.0

So the access list when i do a 'show running-config' looks like this
access-list number deny ip host 0.0.0.0 255.255.255.128 any
Why does it change ?

-- 
Luca Berra -- bluca () comedia it
        Communication Media & Services S.r.l.
 /"\
 \ /     ASCII RIBBON CAMPAIGN
  X        AGAINST HTML MAIL
 / \
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]