Cisco ACL configuration!

[MacCybex]

Hi!
I have such a problem:
I need to configure ACl to allow (permit) incoming pair IP addresses and deny non-pair addreses. The network mask is
180.0.0.0 (this is not important, cause I need the idea).
I have done it so 180.0.0.1 0.255.255.254 and deny. But it was not working. If you can help me, please, reply.

Andrey!

 

[AJ1982]

Can u post the config

===

Fatman Superstar (Andrew James)

CCNA, CCAI

 

[MacCybex]

Yes, it is like this:

Router(config)# access-list 4 deny ip 180.0.0.1 0.255.255.254

Router(config-if)# ip access-group 4 in

and have used no other ACL at all. MAybe this is the problem? MAybe I should have used the Permit All list.

 

[AJ1982]

Yes, you need to permit any any at the end if you are doing a deny only.

AJ

===

Fatman Superstar (Andrew James)

CCNA, CCAI

 

[MacCybex]

Thanks!
Will try it then.

 

[Parcival21]

Hi there,

In your case I would prefer to use only the permit statement for the pair addresse:
access-list 4 permit 180.0.0.0 0.255.255.254.
This will be one config line less, because the deny would be automatically implemented in the implizit deny statement at the end of each access list.
bye,
busche

 

[MacCybex]

Thanks!
Yeah, this one is shorter.

Andrey!