ACL in Single line

Rupesh Kashyap · ‎04-21-2009

Hi, I have to allow tcp 45.194.169.115 , 61.202.173.243, 14.234.41.250 to any eq 443. But I have use ACL in Single line only. Please help what should be ACL...

Thotsaphon Lueangwattanaphong · ‎04-21-2009

Rupesh,

I can't do that in a single line. I can do with a single ACL configured with 3 ACEs.

!

ip access-l ex TEST

permit tcp host 45.194.169.115 any eq 443

permit tcp host 61.202.173.243 any eq 443

permit tcp host 14.234.41.250 any eq 443

!

HTH,

Toshi

rpfinneran · ‎04-22-2009

This cannot be accomplished in one line. As noted above, you must use 3 lines if you only want to allow the specified hosts.

Leo Laohoo · ‎04-22-2009

As what the others have posted, you can't put different hosts in ONE ACL statement.

You can, on the other hand, put in one statement a group of ports in an extended access list.

Rupesh Kashyap · ‎04-23-2009

Hi, I heard this may be like--

14.194.41.114 20.40.132.137 (E.g Network ID and Wild Card). Any idea?//

jennyjohn · ‎01-23-2011

I believe it is

permit tcp 12.194.41.114 49.40.132.137 any eq 443

& permit tcp 12.194.41.114 206.215.123.118 any eq 443 on an ASA

Very intresting question, have to go down to binary level to do this

mlund · ‎01-24-2011

Hi

You can do it in one line as jennyjohn has wrote it.
But I think jennyjohn missed one bit, it should be
permit tcp 12.194.41.114 51.40.132.137 any eq 443 on an ios router

or
permit tcp 12.194.41.114 204.215.123.118 any eq 443 on an ASA

/Mikael