Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Reflexive IP access list

Hello,

I trying to configure Reflexive IP access list, and I just wondeing which one is correct.

A.

ip access-list extended outbound

permit tcp any any reflect traffic

permit udp any any reflect traffic

!

ip access-list extended inbound

permit bgp any any

permit eigrp any any

deny icmp any any

evaluate traffic

B.

ip access-list extended outbound

permit tcp any any reflect tcptraffic

permit udp any any reflect udptraffic

!

ip access-list extended inbound

permit bgp any any

permit eigrp any any

deny icmp any any

evaluate tcptraffic

evaluate udptraffic

Thanks

1 REPLY
VIP Purple

Re: Reflexive IP access list

Hello,

both configs work fine, it does not matter wether you have one or more names defined as being evaluated.

HTH,

GP

245
Views
0
Helpful
1
Replies
CreatePlease to create content