cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Community Helping Community

185
Views
0
Helpful
2
Replies
Highlighted
Beginner

What is the exact difference between the two ACLs?

Hi

Please find the below the ACLs, would like to know the exact difference between the two ACLs.

permit tcp any gt 1023 A.B.C.3D/32 eq 80

permit tcp any eq 80 A.B.C.3D/32 gt 1023 TcpEstablished

Please help            

2 REPLIES 2
Hall of Fame Cisco Employee

What is the exact difference between the two ACLs?

Hi,

permit tcp any gt 1023 A.B.C.3D/32 eq 80

This entry matches any TCP segment whose destination is A.B.C.3D, source port number is 1024 or more and the destination port number is 80. In other words, this entry matches all TCP traffic sent from a client to a webserver at A.B.C.3D.

permit tcp any eq 80 A.B.C.3D/32 gt 1023 TcpEstablished

This entry matches any TCP segment whose sender is A.B.C.3D, source port is 80, destination port is 1024 or more, and has any of these flags set: ACK, FIN, RST. In other words, this entry matches all return traffic from the webserver at A.B.C.3D sent to a client in a response to its request.

Best regards,

Peter

Beginner

What is the exact difference between the two ACLs?

Thanks Peter

CreatePlease to create content
Content for Community-Ad