access-list has protocol or port

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
acomiskey Sun, 10/14/2007 - 11:17
User Badges:
  • Green, 3000 points or more

Not sure what your question is but it doesn't seem to like that you have an extended acl in your nat statement. For example...

access-list nonat permit tcp host x.x.x.x host y.y.y.y www

nat (inside) 0 access-list nonat

you are right. While in 6.2(3) i have ACL's for port based restrictions.

After migrating to 7.2(3), this NAT statement was missing in the config- nat (inside) 0 access-list nonat

When i tried adding it iam gettting this error "access-list has protocol or port" . I hv no other go than roll back the OS upgrade.

acomiskey Mon, 10/15/2007 - 10:43
User Badges:
  • Green, 3000 points or more

I don't think you can do it in anything 6.3 and above. What is your purpose for using it this way exactly, I know you said "port based restrictions". Could you be more specific?


This Discussion