an ACL question

Answered Question

How would you select traffic that doesn't meet a particular requirment?

smth like: access-list 111 permit ip NOT 192.168.0.0 0.0.0.255 any log.

the reason is that I want to monitor spuffing and don't have ip verify-source-addr on my cisco851

Correct Answer by Jon Marshall about 9 years 5 months ago

Hi


access-list 111 deny ip 192.168.0.0 0.0.0.255 any

access-list 111 permit ip any any log


HTH


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
Correct Answer
Jon Marshall Wed, 12/05/2007 - 12:37
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Hi


access-list 111 deny ip 192.168.0.0 0.0.0.255 any

access-list 111 permit ip any any log


HTH


Jon

Actions

This Discussion