Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Access-lists with CBAC

Status
Not open for further replies.
Lonebandit

Lonebandit

IS-IT--Management
Aug 10, 2003
3
US
I have an 837 running 12.3.2T and use 'extended access-lists' along with CBAC. Everything is working fine...but I am having trouble understanding something...

I -thought- I read that you have to use 'extended' access-lists when configuring CBAC...but I see examples of where normal access-lists are being used.

Can someone explain what is preferred and why?
Is there any advantage of using 'extended' access lists over 'standard' access-lists?

Like I said, I -thought- I had to use extended lists when using CBAC.

Thanks in advance!!

:)

Jeff
Milwaukee
 
Sort by date Sort by votes
I am thinking that when you say "extended" you are actually talking about named access-lists, if not then the main difference between generic standard acl and extended is the options you can put in the list eg. source/dest srcport/dstport and so on.
The difference between standard acl's and the named acl list is that you can insert and delete lines in the named acl without removing it first, which you have to do in a std acl.

Jan
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
1K
Sameer258
Sameer258
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
1K
Shmid
Shmid
ISDPCMAN
  • Locked
  • Question
Cannot connect to TZ-215 Sonicwall appliance with web browser!
Replies
0
Views
302
ISDPCMAN
ISDPCMAN
gbayi_omo
  • Locked
  • Question
Cisco ASA 5505 not allowing access to highest security zone
Replies
0
Views
313
gbayi_omo
gbayi_omo
TheFireman2
  • Locked
  • Question
Help with Watchguard Firebox M200 setup as a TMG 2010 replacement with ASA 5515 as main firewall
Replies
1
Views
486
hairlessupportmonkey
hairlessupportmonkey

Part and Inventory Search

Sponsor

Back
Top