- Bronze, 100 points or more
Let say a host 126.96.36.199 wants to telnet to 188.8.131.52
Assume the router containing the ACL as shown below decides to fragment the packet into three, f1,f2,f3
First F1 matches the first ACL so it is dropped.Remaining non inital fragments will be dropped too because the first acl matches the only layer 3 information in non initial fragments
Is my understanding correct?
access-list 199 deny tcp any host 184.108.40.206 eq 23
access-list 199 permit tcp any host 199.199.199.
Correct, since the first access list statement denies 220.127.116.11, the rest of the statement in the list is skipped and the packet is dropped.