Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

ACL

Hi

Why Like This?

access-list Mail-ACL-out extended permit tcp host 209.165.200.231 eq pop3 any

and Not Like This?

access-list Mail-ACL-out extended permit tcp host 209.165.200.231 any eq pop3

What's The Difference?

Thanks a Lot

2 REPLIES
Hall of Fame Super Blue

Re: ACL

Ali

access-list Mail-ACL-out extended permit tcp host 209.165.200.231 eq pop3 any

means allow the host/server 209.165.200.31 to send TCP packets with the source port of pop3 to any destination address on any address

access-list Mail-ACL-out extended permit tcp host 209.165.200.231 any eq pop3

means allow the host/server 209.165.200.31 to send TCP packets with a source port of any to any destination address with a destination port of pop3.

If 209.165.200.231 is your POP server then the first one is probably what you want.

Jon

Re: ACL

Hi Ali,

The generalized format of tcp access-lists is the following:

permit | deny tcp (source address or address range) [source port or port range] (destination address or address range) [destination port or port range] [options]

Cheers:

Istvan

114
Views
5
Helpful
2
Replies
CreatePlease to create content