×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Reflexive IP access list

Unanswered Question
Nov 29th, 2005
User Badges:

Hello,

I trying to configure Reflexive IP access list, and I just wondeing which one is correct.


A.

ip access-list extended outbound

permit tcp any any reflect traffic

permit udp any any reflect traffic

!

ip access-list extended inbound

permit bgp any any

permit eigrp any any

deny icmp any any

evaluate traffic



B.

ip access-list extended outbound

permit tcp any any reflect tcptraffic

permit udp any any reflect udptraffic

!

ip access-list extended inbound

permit bgp any any

permit eigrp any any

deny icmp any any

evaluate tcptraffic

evaluate udptraffic


Thanks


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Georg Pauwen Tue, 11/29/2005 - 09:08
User Badges:
  • Purple, 4500 points or more
  • Cisco Designated VIP,

    2017 WAN

Hello,


both configs work fine, it does not matter wether you have one or more names defined as being evaluated.


HTH,


GP

Actions

This Discussion