Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
528
Views
0
Helpful
5
Replies

standard access-list

Go to solution
sarahr202
Level 5
Level 5

‎02-18-2009 02:36 PM - edited ‎03-04-2019 03:38 AM

Hi every body!

This is my first questions towards routing exam's preparation(CCNP).

If i configure "access-list 10 permit 192.192.192.0"

Since i did not use the wild card mask,"0.0.0.0" wild card mask(According to my book)will be assumed. Is it correct ?

thanks a lot!

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎02-18-2009 02:49 PM

Sarah

Does that mean you passed the switching exam ?

The answer to your question is yes. With a standard acl the default mask is 0.0.0.0 altho note that you are unlikely to get a match as 192.192.192.0 is not a host address.

Jon

View solution in original post

0 Helpful

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to Jon Marshall

‎02-18-2009 02:57 PM

99.9% It is not, but it might be an host address, however one cannot tell w/ knowing the mask of the subnet.

I'm saying that just in case a future question/interview tricks you into something similar.

View solution in original post

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to sarahr202

‎02-19-2009 02:34 AM

Sarah

Firstly, congratulations on passing your switching exam. Never doubted that you would :-)

Remember with acl's that there is an explicit deny at the end of all access-lists.

That said if you used a deny line in your acl then it would simply not carry out whatever set action you have included in your route-map.

Jon

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame

‎02-18-2009 02:49 PM

Sarah

Does that mean you passed the switching exam ?

The answer to your question is yes. With a standard acl the default mask is 0.0.0.0 altho note that you are unlikely to get a match as 192.192.192.0 is not a host address.

Jon

0 Helpful

Go to solution
paolo bevilacqua
Hall of Fame
Hall of Fame
In response to Jon Marshall

‎02-18-2009 02:57 PM

99.9% It is not, but it might be an host address, however one cannot tell w/ knowing the mask of the subnet.

I'm saying that just in case a future question/interview tricks you into something similar.

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to paolo bevilacqua

‎02-18-2009 03:00 PM

Paolo

Good catch, thanks for pointing that out.

Jon

0 Helpful

Go to solution
sarahr202
Level 5
Level 5
In response to Jon Marshall

‎02-18-2009 05:21 PM

Thanks Jon ! Yes i did pass the exam with your and other net pros's help. For that, i am very grateful to you.

Let me get back to question.

access lists are used to:

1)filter traffic.

2)to select traffic(e.g route map use access list to select particular packets for manipulation)

My focus is when we select traffic for manipluation( such as setting the qos, next hop ), we always use " permit".

For example.

access-list 10 permit host 199.199.199.1

vlan access-map zee 20

match ip address 10

action forward.

vlan filter zee vlan-list 2

What would be the implication if i had used " access-list 10 deny host 199.199.199.1" ?

I understand that this is different question, as I am scared of starting a new thread for the question.

Thanks a lot!

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to sarahr202

‎02-19-2009 02:34 AM

Sarah

Firstly, congratulations on passing your switching exam. Never doubted that you would :-)

Remember with acl's that there is an explicit deny at the end of all access-lists.

That said if you used a deny line in your acl then it would simply not carry out whatever set action you have included in your route-map.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card