Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1059
Views
0
Helpful
8
Replies

Permit TCP Traffc

f.medinaa
Level 1
Level 1

‎04-23-2020 07:10 AM

Hello everyone

I have this problem

How do you permit the tcp traffic of all hosts of the network 172.16.0.0/24 towards the "pair" hosts that are within the first 55 hosts of the network 10.0.0.0/24.
 It has to be pair hosts (10.0.0.2  10.0.0.4 10.0.0.6) not (10.0.0.3 10.0.0.5 10.0.0.7)
Sorry if I didn´t make my self clear. LOL.

Labels:
0 Helpful
8 Replies 8

Martin L
VIP
VIP

‎04-23-2020 08:26 AM - edited ‎04-23-2020 08:27 AM

 

Interesting .... and maybe tricky. 

I know wildcard 254 with even number of IP in that octet will do even numbers while odd numbering that octet will do odd numbers.

172.16.0.0 0.0.0.254 will select all even numbers (0,2,4,6,8.etc but it does not stop at 55)

but how to stop at 55?

 

Regards, ML
**Please Rate All Helpful Responses **

0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame

‎04-23-2020 08:27 AM

You're looking for an ACL that doesn't use an ACE for each host?
0 Helpful

Martin L
VIP
VIP

‎04-23-2020 08:30 AM - edited ‎04-23-2020 08:37 AM

 

nope,  found partial answer . .. I think it is 172.16.0.0  wildcard 0.0.0.54

so access-list 111 permit tcp 172.16.0.0   0.0.0.54  any

that gives you 0, 2, 4, 6, missing some here , 16, 18, 20, 22, missing, 32, 34, 36, 38, 48, 50, 52, 54

then i guess add those "missing even" numbers

 

 

Regards, ML
**Please Rate All Helpful Responses **

0 Helpful

Martin L
VIP
VIP
In response to Martin L

‎04-23-2020 08:51 AM


here is how to fill those "missing" IPs
172.16.0.8 0.0.0.2 will give you IPs 8 and 10.
172.16.0.12 0.0.0.2 will give u 12,14
172.16.0.24 0.0.0.2 for 24, 26
and so on , so your list will have several entries.
0 Helpful

Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to Martin L

‎04-23-2020 09:23 AM

How about a mask of 0.0.0.62 (than your .54)? I.e. just keep the last binary bit a zero, set the rest of the mask to encompass the larger block.
0 Helpful

Martin L
VIP
VIP
In response to Joseph W. Doherty

‎04-23-2020 12:16 PM


that could work; Wildcard 0.0.0.62 will match all even numbers from 0 to 62. so, u must block 56 thru 62.
0 Helpful

kamalprasaddhakal
Level 1
Level 1

‎04-23-2020 10:15 AM

 I’m designing and configuring a DMZ network and I want to configure a radius-based authentication for all users on their respective VLANs so that they can access there related file servers when authenticated.
Any idea of How do I go about this as I cannot find any information online???

0 Helpful

Martin L
VIP
VIP
In response to kamalprasaddhakal

‎04-23-2020 12:19 PM


Please create brand new topic with your question.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card