10-06-2010 05:16 PM - edited 03-11-2019 11:51 AM
Can someone help me out with the CLI commands for changing this one line in an ACL. I have to change it so only the following IP ranges are accepted for TCP 25.
208.65.144.0 /0.0.7.255
208.81.64.0 /0.0.3.255
I masked the public IP below with ######'s but you get the idea.
150 permit tcp any host ###.###.###.### eq smtp (2360180 matches)
Any helpd that you can provide would be greatly appreciated.
Solved! Go to Solution.
10-06-2010 05:20 PM
Hello,
Please try the following:
ip access-list extended
146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25
147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25
no 150 permit tcp any host ###.###.###.### eq smtp
Hope this helps.
Regards,
NT
10-06-2010 05:51 PM
Hello,
146 and 147 are the sequence numbers ensuring that the new lines go before the existing lines. When you normaly configure the access-list, the router sequences it with increments of 10.
Regards,
NT
10-06-2010 05:20 PM
Hello,
Please try the following:
ip access-list extended
146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25
147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25
no 150 permit tcp any host ###.###.###.### eq smtp
Hope this helps.
Regards,
NT
10-06-2010 05:32 PM
Just curious what are the 146 and 147 referencing? All other items on the current ACL are incremented by 10. Does it matter?
146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25
147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25
10-06-2010 05:51 PM
Hello,
146 and 147 are the sequence numbers ensuring that the new lines go before the existing lines. When you normaly configure the access-list, the router sequences it with increments of 10.
Regards,
NT
10-06-2010 05:53 PM
Thanks for all your help.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: