access-list question

From: Arifur Rahman (arahman@cisco.com)
Date: Tue Sep 09 2003 - 18:00:34 GMT-3

• Next message: miken: "Re: access-list question"
• Previous message: McClure, Allen: "RE: access-list question"
• Next in thread: McClure, Allen: "RE: access-list question"
• Maybe reply: McClure, Allen: "RE: access-list question"
• Maybe reply: miken: "Re: access-list question"
• Maybe reply: navaid@rogers.com: "Re: access-list question"
• Maybe reply: Arifur Rahman: "Re: access-list question"
• Maybe reply: Arifur Rahman: "Re: access-list question"
• Maybe reply: Zachary Hinz: "Re: access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

<resending, there was a typo>
Hi
I have an access-list question that might be trivial but I am confused. My
topology is like below

---r1# (e1/0)--------r2#----(192.168.5.0/24 subnet)--

and statement is "permit tftp traffic to be received by hosts on r2's
ethernet segment only"

Which one is correct and why

r1#
int e1/0
    ip access-group 100 in
access-list 100 permit udp 192.168.5.0 0.0.0.255 any eq tftp
access-list 100 deny udp any any eq tftp

or

r1#
int e1/0
    ip access-group 100 in
access-list 100 permit udp any 192.168.5.0 0.0.0.255 eq tftp
access-list 100 deny udp any any eq tftp

or neither is correct :)

Appreciate your time. thanks - Arif

• Next message: miken: "Re: access-list question"
• Previous message: McClure, Allen: "RE: access-list question"
• Next in thread: McClure, Allen: "RE: access-list question"
• Maybe reply: McClure, Allen: "RE: access-list question"
• Maybe reply: miken: "Re: access-list question"
• Maybe reply: navaid@rogers.com: "Re: access-list question"
• Maybe reply: Arifur Rahman: "Re: access-list question"
• Maybe reply: Arifur Rahman: "Re: access-list question"
• Maybe reply: Zachary Hinz: "Re: access-list question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Wed Oct 01 2003 - 07:24:25 GMT-3