Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Standard ACL and wild card mask

If The following commands were entered on a router:

Router(config)# access-list 2 deny 172.16.5.24

Router(config)# access-list 2 permit any

What can be concluded about this set of commands?,,,(i.e wild card mask has not been used with deny statement),,,Does a router accept it ? I do not router right now to do practical test

4 REPLIES
Purple

Re: Standard ACL and wild card mask

Hello,

The effect of this access-list would be to deny just the host 172.16.5.24 and to permit everything else. The router would accept this command line.

The lack of a wildcard in this case means that the IP address is a host address. The following access-list statements result in identical behaviour, for example:

access-list 1 permit ip 172.16.5.24

access-list 1 permit ip 172.16.5.24 0.0.0.0

access-list 1 permit ip host 172.16.5.24

Hope that helps - pls rate the post if it does.

Paresh.

New Member

Re: Standard ACL and wild card mask

Thanks

New Member

Re: Standard ACL and wild card mask

distance 140 0.0.0.0 255.255.255.255 9

access-list 9 permit 197.135.20.0

access-list 9 permit 197.135.24.0

access-list 9 permit 197.135.27.0

This is partial of the output ,,,,can we omit the wildcard mask with the network address as well, when we use standard ACL ?

Purple

Re: Standard ACL and wild card mask

Hi,

You certainly omit the wildcard mask when using standard ACLs, and it will default to 0.0.0.0...

Hope that helps.

Pls remember to rate posts.

Paresh.

398
Views
0
Helpful
4
Replies