Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

adding an access-list entries for subnets

Status
Not open for further replies.
Jan 15, 2002
126
Hello...

I would like to add entries in an access-list for 192.168.1.0 and 192.168.2.0 subnets instead of PC by PC. What would be the command to set this up to allow " and "https" but deny everything else?

Also, can I add the subnets and then add a few separate PCs with "ftp" or other access rights? What would that command be?

THANKS!
 
access-list [name] permit tcp 192.168.1.0 255.255.255.0 any eq 80
access-list [name] permit tcp 192.168.2.0 255.255.255.0 any eq 80
access-list [name] permit tcp 192.168.1.0 255.255.255.0 any eq 443
access-list [name] permit tcp 192.168.2.0 255.255.255.0 any eq 443

(There is no need to add a specific deny as the firewall will deny anything that does not match an access-list rule)
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top