Access-lists with CBAC

Lonebandit · Aug 10, 2003

I have an 837 running 12.3.2T and use 'extended access-lists' along with CBAC. Everything is working fine...but I am having trouble understanding something...

I -thought- I read that you have to use 'extended' access-lists when configuring CBAC...but I see examples of where normal access-lists are being used.

Can someone explain what is preferred and why?
Is there any advantage of using 'extended' access lists over 'standard' access-lists?

Like I said, I -thought- I had to use extended lists when using CBAC.

Thanks in advance!!

Jeff
Milwaukee

dopehead · Sep 3, 2003

I am thinking that when you say "extended" you are actually talking about named access-lists, if not then the main difference between generic standard acl and extended is the options you can put in the list eg. source/dest srcport/dstport and so on.
The difference between standard acl's and the named acl list is that you can insert and delete lines in the named acl without removing it first, which you have to do in a std acl.

Jan

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Access-lists with CBAC

Lonebandit

IS-IT--Management

dopehead

MIS

Similar threads

Part and Inventory Search

Sponsor