https://community.cisco.com/t5/network-security/access-list-question/m-p/727344#M971733 <HTML><HEAD></HEAD><BODY><P>you could supernet them. </P><P>x.x.x.96/28</P><P>this will actually allow hosts x.x.x.96-x.x.x.110</P><P>http x.x.x.96 255.255.255.240 inside</P><P>or, if you meant http access *through* and not *to*...</P><P>access-list 101 permit tcp x.x.x.96 255.255.255.240 any eq 80</P><P>If this is not acceptable, you'll have to type each one in separately.</P><P></P><P></P></BODY></HTML> Mon, 06 Aug 2007 18:32:13 GMT srue 2007-08-06T18:32:13Z https://community.cisco.com/t5/network-security/access-list-question/m-p/727343#M971732 <P>I have a range of about 12 IP's xx.xx.xx.99-xx.xx.xx.110 that I need to allow http access to on my Pix. Is there a command to just allow that range so I don't have to set each one up seperately? </P><P></P><P>Thanks!</P> Mon, 11 Mar 2019 10:54:16 GMT https://community.cisco.com/t5/network-security/access-list-question/m-p/727343#M971732 sonitadmin 2019-03-11T10:54:16Z https://community.cisco.com/t5/network-security/access-list-question/m-p/727344#M971733 <HTML><HEAD></HEAD><BODY><P>you could supernet them. </P><P>x.x.x.96/28</P><P>this will actually allow hosts x.x.x.96-x.x.x.110</P><P>http x.x.x.96 255.255.255.240 inside</P><P>or, if you meant http access *through* and not *to*...</P><P>access-list 101 permit tcp x.x.x.96 255.255.255.240 any eq 80</P><P>If this is not acceptable, you'll have to type each one in separately.</P><P></P><P></P></BODY></HTML> Mon, 06 Aug 2007 18:32:13 GMT https://community.cisco.com/t5/network-security/access-list-question/m-p/727344#M971733 srue 2007-08-06T18:32:13Z https://community.cisco.com/t5/network-security/access-list-question/m-p/727345#M971734 <HTML><HEAD></HEAD><BODY><P>I think I understand, but could you show me exactly how the access-list command would look?</P><P></P><P>Thanks!</P></BODY></HTML> Mon, 06 Aug 2007 18:37:24 GMT https://community.cisco.com/t5/network-security/access-list-question/m-p/727345#M971734 sonitadmin 2007-08-06T18:37:24Z https://community.cisco.com/t5/network-security/access-list-question/m-p/727346#M971735 <HTML><HEAD></HEAD><BODY><P>access-list 101 permit tcp x.x.x.96 255.255.255.240 any eq 80 </P><P>access-group 101 in interface outside</P></BODY></HTML> Mon, 06 Aug 2007 19:05:22 GMT https://community.cisco.com/t5/network-security/access-list-question/m-p/727346#M971735 oabduo983 2007-08-06T19:05:22Z https://community.cisco.com/t5/network-security/access-list-question/m-p/727347#M971736 <HTML><HEAD></HEAD><BODY><P>Steve,</P><P></P><P>You need to clarify in which direction this traffic is travelling through your pix. The post directly above is most likely not right as this allows the network to any inside on port 80. I assume these are you inside ips which are going outbound on port 80 or any from outside may access them on port 80.</P></BODY></HTML> Mon, 06 Aug 2007 19:12:12 GMT https://community.cisco.com/t5/network-security/access-list-question/m-p/727347#M971736 acomiskey 2007-08-06T19:12:12Z