Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Standard ACL in One line

I have to deny 51.3.0.1,51.5.0.1,51.7.0.1,51.3.0.9,51.5.0.9 & 51.7.0.9. The problem is I have use only ONE line in Standard ACL. What should be ACL for that.

3 REPLIES
Hall of Fame Super Gold

Re: Standard ACL in One line

I don't think you can put all those IP Addresses in one line of a STANDARD ACL.

Re: Standard ACL in One line

Hi Rupesh,

This is the toughest possible ACL that includes all of these routes.

access-list 1 deny 51.1.0.1 0.6.0.8

access-list 1 permit any

Of course, the "permit any" statement is needed, otherwise the "deny" statement is useless.

Please note that this ACL includes some other prefixes not listed by you, but I tried to narrow its scope as far as I could.

Cheers:

Istvan

New Member

Re: Standard ACL in One line

51.3.0.1

51.5.0.1

51.7.0.1

51.3.0.9

51.5.0.9

51.7.0.9

This denies from 51.0.0.1 - 51.7.255.254

access-list 1 per 51.3.0.0 0.7.255.255

route-map DENY51 deny 10

match ip address 1

route-map DENY51 per 20

router ospf 1

distribute-list route-map DENY51 in

96
Views
0
Helpful
3
Replies
CreatePlease to create content