Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-list statement

Whats the difference bwt the following access-list commiand.

permit tcp host 132.1.3.100 eq smtp any, and....

permit tcp host 132.1.3.100 any eq smtp

2 REPLIES
Hall of Fame Super Silver

Re: Access-list statement

Hello Just,

in the first case is traffic from smtp server 132.1.3.100 to any

in the second case is traffic from client 132.1.3.100 to an smtp server with arbitrary address.

In extended ACL there is the capacity to specify protocol, source and destination address and in the case of TCP or UDP you can specify the source port (if after the source address) or the destination port (if after the destination address).

if 132.1.3.100 is an smtp server the right formulation can be the first one if the ACL is applied in a direction that sees packets with source 132.1.3.100.

Hope to help

Giuseppe

Blue
96
Views
4
Helpful
2
Replies