ACL Question
This was a drag and drop question.
access-list 107 deny tcp 207.16.12.0 0.0.3.255 any eq http
access-list 107 permit ip any any
Which below are permitted and which are not?
1) source IP 207.16.32.14 destination application http
2) sourse IP 207.16.15.9 destination port 23
3) source IP 207.16.14.7 destination port 80
4) source IP 207.16.13.14 destination application http
5) source IP 207.16.16.14 destination port 53
The answer is apparently #1 and #2 are permitted 3,4,5 are not.
# 1 is permited because it is not covered by the first line of the access-list. The second line permits it.
# 2 is permitted because it is not going to http or port 80. the second line permits it.
# 3 and #4 are blocked by the first line of ACL
Why is # 5 blocked?
Thanks
Nick
This was a drag and drop question.
access-list 107 deny tcp 207.16.12.0 0.0.3.255 any eq http
access-list 107 permit ip any any
Which below are permitted and which are not?
1) source IP 207.16.32.14 destination application http
2) sourse IP 207.16.15.9 destination port 23
3) source IP 207.16.14.7 destination port 80
4) source IP 207.16.13.14 destination application http
5) source IP 207.16.16.14 destination port 53
The answer is apparently #1 and #2 are permitted 3,4,5 are not.
# 1 is permited because it is not covered by the first line of the access-list. The second line permits it.
# 2 is permitted because it is not going to http or port 80. the second line permits it.
# 3 and #4 are blocked by the first line of ACL
Why is # 5 blocked?
Thanks
Nick