Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

access-list

HI

What does it mean this access-list;or the wild card 0.0.0.2:

access-list 15 permit 192.168.100.0 0.0.0.2

10xs

4 REPLIES
New Member

Re: access-list

read up on your wild card masks these are the inverse of the subnetmasks so the 0.0.0.2

is the access-list equivalant of 255.255.255.254 or 2 ip addresses so this access list permits 192.168.100.0 and 192.168.100.1

all other ip addresses would be denyed.

Gene

Silver

Re: access-list

hi ,

the access-list is standard access-list and it allows only two addresses and those to are nothing but source.

Extended access-list has both source and detination ip's along with ports.

While specifying any access-list you should mention wild card mask to specify range of ip addresses.

*** After craeting access-list you should apply it to interface...access-list without applying to interface is useless.

Hope it clarifies you.

Thanks,

satish

Re: access-list

Hi,

When you use the wild card mask as 0.0.0.2 , then the router compares your address and the corresponding bits in the mask

taking the last octet

00000010 --- So we can change only the value of the second bit as 0 or 1 ( if bit value is 1 , then we can have either 0 or 1 )

if 0 , then 192.168.100.0

if 1 , then 192.168.100.2

So these two values would be matched

Just for ref :

http://www.cisco.com/en/US/products/ps6441/products_configuration_guide_chapter09186a0080716ebd.html#wp1049876

Pls rate all posts

regards

vanesh k

New Member

Re: access-list

Hi

10xs for all ur reply's

10xs

123
Views
15
Helpful
4
Replies