Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

host 255.255.255.0

Dear Netpro!

R1#sh ip access-lists

Extended IP access list RIP-OSPF

10 permit ip 199.172.0.0 0.0.255.255 255.255.255.0 0.0.0.255

20 permit ip host 150.100.1.0 host 255.255.255.0

30 permit ip host 150.1.1.0 host 255.255.255.0

question:what this mean ?host 255.255.255.0

many 10xs

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Bronze

Re: host 255.255.255.0

Ali,

That's not a valid host, that should've been part of the subnet mask.

It looks like that ACL is for redistribution and you want to redistribute 199.172.0.0/16, 150.100.1.0/24 and 150.1.1.0/24.

Your ACL you should like this

Standard IP access list RIP-OSPF

10 permit 199.172.0.0, wildcard bits 0.0.255.255

20 permit 150.100.1.0, wildcard bits 0.0.0.255

30 permit 150.1.1.0, wildcard bits 0.0.0.255

___

sh run | sec RIP-OSPF

ip access-list standard RIP-OSPF

permit 199.172.0.0 0.0.255.255

permit 150.100.1.0 0.0.0.255

permit 150.1.1.0 0.0.0.255

__

Remember, with ACLs you must use the inverse mask and use standard instead of extended

HTH,

__

Edison.

3 REPLIES
Hall of Fame Super Bronze

Re: host 255.255.255.0

Ali,

That's not a valid host, that should've been part of the subnet mask.

It looks like that ACL is for redistribution and you want to redistribute 199.172.0.0/16, 150.100.1.0/24 and 150.1.1.0/24.

Your ACL you should like this

Standard IP access list RIP-OSPF

10 permit 199.172.0.0, wildcard bits 0.0.255.255

20 permit 150.100.1.0, wildcard bits 0.0.0.255

30 permit 150.1.1.0, wildcard bits 0.0.0.255

___

sh run | sec RIP-OSPF

ip access-list standard RIP-OSPF

permit 199.172.0.0 0.0.255.255

permit 150.100.1.0 0.0.0.255

permit 150.1.1.0 0.0.0.255

__

Remember, with ACLs you must use the inverse mask and use standard instead of extended

HTH,

__

Edison.

New Member

Re: host 255.255.255.0

10xs edison much appreciated

New Member

Re: host 255.255.255.0

On the other hand - those could be valid access lists. Access lists of that format can be used to filter BGP routes.

The source portion of the ACL is used to match the network portion of the BGP route and the destination portion of the ACL is used to match the subnet mask of the BGP route.

http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a00801310cb.shtml

Filtering Using distribute-list with an Extended Access List

769
Views
0
Helpful
3
Replies
CreatePlease login to create content