Home
Certification Preparation
Cisco
CCIE
Why the diff between these two ACLs?
Sa'ad
1) ip access-list extended HTTP
permit tcp 155.1.146.0 0.0.0.255 eq www any
2) ip access-list extended HTTP
permit tcp 155.1.146.0 0.0.0.255 any eq www
I have applied this ACL to a qos policing policy. I'm getting hits with the first one but not with the second one. Not sure what I'm missing here but they look the same to me besides the order of entry.
Any thoughts?
Find more posts tagged with
Comments
fredrikjj
The first one says "permit from 155.1.146.0/24 port 80 to any destination with any port"
The second one says "permit from 155.1.146.0/24 with any port to any destination with port 80."
Sa'ad
Obiviously I need refreshing on my ACL skills. I haven't done serious ACL work since my CCNA days. The way you explain it makes perfect sense.
Thanks a lot fredrikjj!
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
