Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

acl

If I need to give access to a class b network in an acl/static statement would the following statement work...

access-list acl_out permit tcp host xxx.xxx.0.0 host my.outside.ip eq ssh

static (inside,outside) tcp my.outside.ip ssh my.inside.ip ssh netmask 255.255.255.255 0 0

I've used this configuration before when I had the single IP address but when it is a whole class b I wasn't sure if the xxx.xxx.0.0 would work.

Thanks.

1 REPLY
Green

Re: acl

access-list acl_out permit tcp x.x.0.0 255.255.0.0 host my.outside.ip eq ssh

When doing networks, do not use keyword "host", that host keyword is same as mask 255.255.255.255.

104
Views
5
Helpful
1
Replies
CreatePlease login to create content