Re: SMTP access list

[John Hardman]

Title: SMTP access list

Hi   Nope, as soon as a match in the list is made, it is processed, and no longer considered by the ACL. So in your example a packet with a source address of 193.128.233.177 on TCP port 25 it would forwarded/routed to the IP/forwarding interface.   HTH -- John Hardman, MCSE+I, CCNA ArrisTech/CCS-IS SysAdmin     ""Deloso, Elmer G."" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, all. Just to verify my understanding of extended access-lists: this continues to parse the entries even after a match has already been found, so if the first few lines have a "permit" and later down the last few lines it encounters a "deny", what does the router do? Example: access-list 176 permit tcp 193.128.233.177 0.0.0.0 any eq smtp log access-list 176 permit tcp 203.23.83.180 0.0.0.0 any eq smtp log access-list 176 permit tcp 203.35.182.133 0.0.0.0 any eq smtp log . . . . access-list 176 deny ip 193.0.0.0 0.255.255.255 any log access-list 176 deny ip 203.0.0.0 0.255.255.255 any log Any help would be greatly appreciated. Elmer Deloso