Date: Fri, 1 Dec 2000 00:25:58 -0600 (CST) From: Butch Evans <butch@sheltonbbs.com> To: Freebsd-ISP <freebsd-isp@FreeBSD.ORG> Subject: Re: Danger Ports Message-ID: <Pine.BSF.4.21.0012010022400.34557-100000@systemadmin.sheltonbbs.com> In-Reply-To: <20001130221631.E99903@149.211.6.64.reflexcom.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 30 Nov 2000, Crist J . Clark wrote:
> On Thu, Nov 30, 2000 at 09:43:57AM -0800, Rodney W. Grimes wrote:
>
> [snip]
>
> > > access-list 110 deny ip 172.16.0.0 0.15.255.255 any log
> > > access-list 110 deny ip 172.31.0.0 0.0.255.255 any log
>
> > access-list 110 deny ip any 172.16.0.0 0.15.255.255 log
> > access-list 110 deny ip any 172.31.0.0 0.0.255.255 log
>
> Is it me? Isn't the second network in each a subset of the first?
>
I am not sure what you mean, but you read the access list as:
access-list 110 deny ip 172.16.0.0 0.15.255.255 any log
^^^^^^^^^^^^^^^^^^^^^^ ^
From To
access-list 110 deny ip any 172.16.0.0 0.15.255.255 log
^^^ ^^^^^^^^^^^^^^^^^^^^^^
From To
See the difference?
--
Butch Evans
Shelton Internet
Network Admin
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0012010022400.34557-100000>