I have the following /16 172.31.0.0/16 that I'm trying to create an access list for. I'd like to allow 172.31.240.0/24 but deny all else, so I'm looking the best way to accomplish this with 2 acl lines.
Any help would be appreciated?
Just a simple permit of the 172.31.240.0 subnet and deny the whole subnet will be sufficient.
permit ip 172.31.240.0 0.0.0.255
deny ip 172.31.0.0 0.0.255.255