defining groups of IPs in access-lists....

Discussion in 'Cisco' started by Captain, May 7, 2004.

  1. Captain

    Captain Guest

    I want to define an access-list to single out 2 IPs, namely:

    192.168.123.21 and 192.168.123.22

    Would this be right?

    access-list 17 permit ip 192.168.123.20 0.0.0.3
     
    Captain, May 7, 2004
    #1
    1. Advertising

  2. In article <>,
    Captain <> wrote:
    :I want to define an access-list to single out 2 IPs, namely:

    :192.168.123.21 and 192.168.123.22

    :Would this be right?

    :access-list 17 permit ip 192.168.123.20 0.0.0.3

    No, that would be 192.168.123.20 and 192.168.123.23 as well.

    --
    Contents: 100% recycled post-consumer statements.
     
    Walter Roberson, May 7, 2004
    #2
    1. Advertising

  3. :access-list 17 permit ip 192.168.123.21 0.0.0.1

    -cnrc.gc.ca (Walter Roberson) wrote:

    >In article <>,
    >Captain <> wrote:
    >:I want to define an access-list to single out 2 IPs, namely:
    >
    >:192.168.123.21 and 192.168.123.22
    >
    >:Would this be right?
    >
    >:access-list 17 permit ip 192.168.123.21 0.0.0.3
    >
    >No, that would be 192.168.123.20 and 192.168.123.23 as well.
     
    Howard Huntley, May 7, 2004
    #3
  4. Captain

    John Caruso Guest

    In article <>, Howard Huntley wrote:
    >>In article <>,
    >>Captain <> wrote:
    >>:I want to define an access-list to single out 2 IPs, namely:
    >>
    >>:192.168.123.21 and 192.168.123.22

    >
    >:access-list 17 permit ip 192.168.123.21 0.0.0.1


    No, that specifies the addresses 192.168.123.20 and 192.168.123.21; it's
    identical to 192.168.123.20 0.0.0.1.

    There's no single network/wildcard combination that encompasses both of
    the specified addresses without also including any others. The OP's
    suggestion of 192.168.123.20 0.0.0.3 is as close as you can get.

    - John
     
    John Caruso, May 7, 2004
    #4
  5. Captain

    John Rennie Guest

    access-list 17 permit ip 192.168.123.21 0.0.0.0
    access-list 17 permit ip 192.168.123.22 0.0.0.0

    or I think you can do

    access-list 17 permit ip host 192.168.123.21
    access-list 17 permit ip host 192.168.123.22

    JR



    On Fri, 07 May 2004 00:48:38 GMT, Captain <> wrote:

    >access-list 17 permit ip 192.168.123.20 0.0.0.3
    >
     
    John Rennie, May 10, 2004
    #5
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Matt
    Replies:
    0
    Views:
    493
  2. Mephesto
    Replies:
    2
    Views:
    2,321
    Mephesto
    Jun 9, 2005
  3. Jamie Thomson
    Replies:
    3
    Views:
    479
    Sarang Datye
    Nov 29, 2003
  4. Rohit Wason
    Replies:
    5
    Views:
    491
    The Poster Formerly Known as Kline Sphere
    Dec 27, 2004
  5. Martijn Lievaart

    HSRP: virtual IPs without real IPs?

    Martijn Lievaart, Feb 9, 2012, in forum: Cisco
    Replies:
    4
    Views:
    1,182
    Martijn Lievaart
    Feb 15, 2012
Loading...

Share This Page