Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Need to change ACL on Cisco 2800

Can someone help me out with the CLI commands for changing this one line in an ACL.   I have to change it so only the following IP ranges are accepted for TCP 25.

208.65.144.0 /0.0.7.255

208.81.64.0 /0.0.3.255

I masked the public IP below with ######'s but you get the idea.

150 permit tcp any host ###.###.###.### eq smtp (2360180 matches)

Any helpd that you can provide would be greatly appreciated.

Everyone's tags (2)
2 ACCEPTED SOLUTIONS

Accepted Solutions
Cisco Employee

Re: Need to change ACL on Cisco 2800

Hello,

Please try the following:

ip access-list extended

146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25

147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25

no 150 permit tcp any host ###.###.###.### eq smtp

Hope this helps.

Regards,

NT

Cisco Employee

Re: Need to change ACL on Cisco 2800

Hello,


146 and 147 are the sequence numbers ensuring that the new lines go before the existing lines. When you normaly configure the access-list, the router sequences it with increments of 10.

Regards,

NT

4 REPLIES
Cisco Employee

Re: Need to change ACL on Cisco 2800

Hello,

Please try the following:

ip access-list extended

146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25

147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25

no 150 permit tcp any host ###.###.###.### eq smtp

Hope this helps.

Regards,

NT

New Member

Re: Need to change ACL on Cisco 2800

Just curious what are the 146 and 147 referencing?  All other items on the current ACL are incremented by 10.  Does it matter?

146 permit tcp 208.65.144.0 0.0.7.255 host ####### eq 25

147 permit tcp 208.81.64.0 0.0.3.255 host ####### eq 25

Cisco Employee

Re: Need to change ACL on Cisco 2800

Hello,


146 and 147 are the sequence numbers ensuring that the new lines go before the existing lines. When you normaly configure the access-list, the router sequences it with increments of 10.

Regards,

NT

New Member

Re: Need to change ACL on Cisco 2800

Thanks for all your help.

1560
Views
0
Helpful
4
Replies
CreatePlease login to create content