Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Gold

access-list

Is any difference between those acl???

access-list 101 permit tcp any any eq telnet estab

and

access-list 101 permit tcp any eq telnet any estab

Thanks for answer

1 REPLY
Bronze

Re: access-list

Yes,

the first one matches only packets with destination port 23, i.e. from client to server. The second one matches only packets with source port 23, i.e. from server to client.

The estab keyword causes the line to only match on packets that do not have the syn bit set, so only on packets belonging to an already established connection.

hth

Herbert

82
Views
0
Helpful
1
Replies
CreatePlease to create content