Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
248
Views
5
Helpful
1
Replies

acl

dexteroc1
Level 1
Level 1

‎05-01-2007 07:39 AM - edited ‎03-11-2019 03:07 AM

If I need to give access to a class b network in an acl/static statement would the following statement work...

access-list acl_out permit tcp host xxx.xxx.0.0 host my.outside.ip eq ssh

static (inside,outside) tcp my.outside.ip ssh my.inside.ip ssh netmask 255.255.255.255 0 0

I've used this configuration before when I had the single IP address but when it is a whole class b I wasn't sure if the xxx.xxx.0.0 would work.

Thanks.

Labels:
0 Helpful
1 Reply 1

acomiskey
Level 10
Level 10

‎05-01-2007 09:58 AM

access-list acl_out permit tcp x.x.0.0 255.255.0.0 host my.outside.ip eq ssh

When doing networks, do not use keyword "host", that host keyword is same as mask 255.255.255.255.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card