Access-list question
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-07-2003 10:05 AM - edited 03-02-2019 09:26 AM
I hate to ask this question but don't seem to be able to find a definitive answer on the CCO site.
I am attempting to rules added to inbound and outgoing access-lists using port number ranges. (Equipment is maintained by another group, therefore I cannot test to answer this question)
IOS version 12.0
Outbound:
access list xxx permit udp x.x.x.x 0.0.0.31 any range 1645 1813
Outgoing works perfectly utilizing the range command.
Inbound:
access list xxx permit udp any range 1645 1813 x.x.x.x 0.0.0.31
I am being told that the range option is not valid with source addresses. Does anyone know if this is true, and where I can find documentation to support either way.
Thanks
- Labels:
-
Other Networking
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-07-2003 10:38 AM
Hello,
Yes, you can absolutely do that:
router(config)#ac 154 permit udp any ?
A.B.C.D Destination address
any Any destination host
eq Match only packets on a given port number
gt Match only packets with a greater port number
host A single destination host
lt Match only packets with a lower port number
neq Match only packets not on a given port number
range Match only packets in the range of port numbers
HTH
