Thanks to both of you. That does make more sense, however, I still have one question. In our firewall today, we have some rules that look like this, "access-list 81 extended permit ip...", and others that look like this, "access-list 101 extended permit ip...".
Is 81 just the name of the ACL, even though it's an extended list? By the way, this is in an ASA firewall running 7.1(2).
And does it make any difference in naming an ACL by number or name? Such as "access-list 70 permit..." versus "access-list dmz_acl permit..."
Thanks for helping a newbie figure this stuff out, TT
Yes, 81 or 101 are the names of the ACL. I believe the PIX will only do extended ACLs. It just means you have more options, but you can make it work like a standard ACL. Since the pix allows named (ascii) ACLs, I use them so I know what I was intending to do with them and if someone else needs to make changes, they can find it fairly easily.
We're in the middle of complete network redesign, so I intend to name the acl's something myself and others can easily recognize, rather than just numbers.
Thanks to all for helping me figure this out!
Now, can someone explain women to me? :O)
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.