cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
681
Views
0
Helpful
15
Replies

How to define a part of subnet in ACL?

SludnevTN_2
Level 1
Level 1

Is it possible to define only this range of hosts: 192.168.80.200-254 /24 in standard ACL without entering each host per line?

Thank you.

ip access-list standard PAT

permit 192.168.80.200

permit 192.168.80.201

.

.

permit 192.168.80.254

Any other ways?

15 Replies 15

paolo bevilacqua
Hall of Fame
Hall of Fame

No. You're limited to specify a wildcard mask, to the extent your range is falling on bit boundaries. e.g 0.0.0.1 for x.x.x.200-201

Edison Ortiz
Hall of Fame
Hall of Fame

You can accomplish the task with 3 lines:

ip access-list standard PAT

permit 192.168.80.200 7.255.255.255

permit 192.168.80.208 15.255.255.255

permit 192.168.80.224 31.255.255.255

HTH,

___

Edison.

Edison

Shouldn't that be -

ip access-list standard PAT

permit 192.168.80.200 .0.0.0.7

permit 192.168.80.208 0.0.0.15

permit 192.168.80.224 0.0.0.31

Jon

Jon,

Yes, posting while on the phone isn't something I recommend :)

__

Edison.

You're taking it the wrong way Edison (and I do not mean the wildcard mask).

You've just been talking while posting, not viceversa.

With a little practice, you will learn how to screw up both things at the same time. One only, is for beginners.

Paolo,

I actually did.

While posting, I was asked a question and I was dumbfounded :(

Good job, I'm proud of you. We're not Engineers for nothing.

Thank you.

How do you do this so quickly? I understand a logic, but... did you use some tools? IP calc?

PLEASE DO NOT POST THE SAME QUESTION ON TWO DIFFERENT THREADS.

Please do not post in uppercase neither :)

Victor,

Please, that's uncalled for..

Whats un-called for. Asking him not to post the same question on 2 threads?

Or using CAPS?

The CAPS is just an attention-getter. Were I yelling at him, I would have used "!" OK!!!!!!??????? :-D

OK

Tim,

It comes with experience.

I haven't used any IP Calculator for a LONG time.

__

Edison.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco