Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
230
Views
4
Helpful
2
Replies

subnetting question

CSCO10662744_2
Level 1
Level 1

‎03-09-2006 09:47 AM - edited ‎03-03-2019 02:12 AM

I've got a subnet: 172.16.32.0 /20

I want to allow only hosts from that network (172.16.32.0-172.16.47.0) to access my switch.

So I have an ACL:

access-list 101 permit ip 172.16.32.0 0.0.16.255 host 172.16.33.101 (ip of switch).

For some reason, the ACL doesn't work. If I use the 0.0.0.255 mask however, it works fine.

So apparently I may have got the mask in the ACL wrong.

Could someone please tell me what mask I should've used??

Thanks.

Labels:
0 Helpful
2 Replies 2

Harold Ritter
Cisco Employee
Cisco Employee

‎03-09-2006 10:02 AM

Wildmask bits have to be contiguous.Try the following ACL statement instead:

access-list 101 permit ip 172.16.32.0 0.0.15.255 host 172.16.33.101

Hope this helps,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

CSCO10662744_2
Level 1
Level 1
In response to Harold Ritter

‎03-09-2006 10:22 AM

Thank you.

Not sure how I totally forgot about that...maybe I should retake subnetting 101.

0 Helpful
Customers Also Viewed These Support Documents