Firewall Wizards mailing list archives

Re: cisco config help

From: "Mikhail Evstiounin" <evs () telerama com>
Date: Sat, 26 May 2001 00:36:02 -0400

Take a look at
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122c
gcr/fipr_c/ipcprt1/1cfip.htm#20639
and search for "Numbered Access List Examples". This is a quote:
access-list 2 permit 36.48.0.3
access-list 2 deny 36.48.0.0  0.0.255.255
access-list 2 permit 36.0.0.0  0.255.255.255
                                                   ~~~~~~~~~~~

So, try

access-list 101 deny ip 63.101.102.0 0.0.0.127 any

IOS operates in terms of wild-cards, not masks.

----- Original Message -----
From: "Stuart Clark" <sclark () spacelink com au>
To: <firewall-wizards () nfr com>
Sent: Friday, May 25, 2001 10:46 AM
Subject: [fw-wiz] cisco config help

Hi,
I am trying to make an access-list on my Cisco 3620.

I type 'access-list 101 deny ip 63.101.102.0 255.255.255.128 any'

The only problem is that the cisco converts 63.101.102.0 to

0.0.0.0


So the access list when i do a 'show running-config' looks like

this

access-list number deny ip host 0.0.0.0 255.255.255.128 any
Why does it change ?

-------------------------------------
Stuart G. Clark
Manager,
Spacelink Communications Pty. Ltd.
http://www.spacelink.com.au
+61 03 9 888 9874

-------------------------------------

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

cisco config help Stuart Clark (May 25)
- Re: cisco config help Luca Berra (May 26)
- Re: cisco config help Ryan Russell (May 26)
- Re: cisco config help Mikhail Evstiounin (May 26)
- <Possible follow-ups>
- RE: cisco config help Behm, Jeffrey L. (May 26)
- RE: cisco config help jan (May 30)