Hi Ivan, Neither access-list would work, because if your trying to limit telnet access for the network 200.200.200. to network 10.10. then you would have this access-list:
access-list 100 permit tcp 200.200.200.0 0.0.0.255 10.10.0.0 0.0.255.255 eq 23 This is because access-lists uses source wildcards. Scott -----Original Message----- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:22 PM To: [EMAIL PROTECTED] Subject: PIX Access-list Problem. [7:37336] Hi all, I have a problem, does anyone can give me a answer? Which the following access-list is right to allow only telnet? 1. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 23 2. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 eq 23 Thank you very much. Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37341&t=37336 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
