Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

access list

Can anyone tell me what the difference in permit ip any host and permit ip any any is ?

thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: access list

When you write 'permit ip any host x.x.x.x' you are permitting ip traffic from any source to a specific host x.x.x.x

When you write 'permit ip any any' you are basically permitting ip traffic from any source to any destination.

2 REPLIES
Silver

Re: access list

When you write 'permit ip any host x.x.x.x' you are permitting ip traffic from any source to a specific host x.x.x.x

When you write 'permit ip any any' you are basically permitting ip traffic from any source to any destination.

Re: access list

Hi,

Permit ip any(any src address) host(to particular destination address eg:10.0.0.1)

Permit ip any(any src address) any(any destination address)

In "any any" all services will also be open to access.

You can also limit the service oriented traffic in case of "any host" ACL by using:

Permit ip any host eq 80/http

permit ip any host eq 21/ftp

Regards,

Guru Prasad.R

116
Views
0
Helpful
2
Replies
CreatePlease to create content