Error parsing destination mask

Unanswered Question
Jun 17th, 2008
User Badges:

Hi everyone, here`s a basic question for you. I`m trying to make an ACL that would allow traffic to IPs that end with a .9

Here`s what I put in the ACL: permit ip any

This is an ACL that`s used with Cisco ACS when clients connect to our 3020 VPN concentrator. Checking the 3020 logs, I see this message once I try to connect: 9664 06/17/2008 13:34:51.840 SEV=4 FILTERDBG/39 RPT=4

Error parsing destination mask:, in rule (permit ip any 25

Tearing down tunnel.

Is there something I'm doing wrong with the mask? I've seen this used in an ACL on one of our router and it's working fine. Is it a 3020 thing? If so, what can I do to permit access to x.x.x.9 only?

Thanks in advance,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
chris_moyzan Thu, 06/19/2008 - 03:28
User Badges:

I understand that, that's why I put so that only the last octet is relevent (in this case, the .9). If I put, it will be 0.0.0.x

I really want x.x.x.9 to be permitted...


This Discussion