Re: ACL Query

gauravm · ‎08-28-2005

hi,

kindly guide me the meaning for this :

access-list 90 permit 0.0.0.0

access-list 90 deny any

Regards,

amit-singh · ‎08-28-2005

Gaurav,

Generally we use 0.0.0.0 is allow all IP packets. The the statement at the last will deny the all traffic from any source which is not the IP traffic for example IPX trafic any any other.

regards,

-amit singh

st_kannan · ‎08-29-2005

Hi Amit,

Access-list 1-99 belongs to "IP standard access list" it won't look other traffics other than ip.

Am i correct?

Regards,

KANNAN.S.T.

sushilk · ‎08-28-2005

Hi Gauravm,

The statements represents standard access lists. But these statements ara not complete. You have not defined any wild card mask.

Following link will help you understanding the access lists, their syntax and how these can be used:

http://www.cisco.com/en/US/products/hw/switches/ps5023/products_configuration_guide_chapter09186a0080476468.html#wp1098864

Regards

Sushil

gauravm · ‎08-28-2005

thanks for the reply.

Actually this has been used with distribute list as:

distribute-list 1 out s0/0

access-list 1 permit 0.0.0.0

access-list 1 deny any.

couldnt make out..kindly help ..

st_kannan · ‎08-29-2005

Hi,

In standard access-list

any means 0.0.0.0 255.255.255.255.

Also if you are not mention any wildcard mask, 0.0.0.0 is assumed to be the mask.

I think in your ACE, you should mention 0.0.0.0 255.255.255.255.

I think i will some idea.

Regards,

KANNAN.S.T.

st_kannan · ‎08-29-2005

Hi,

With standard access lists, if you omit the mask from an associated IP host address ACL specification, 0.0.0.0 is assumed to be the mask.

Regards,

KANNAN.S.T.