Pastebin launched a little side project called HostCabi.net, check it out ;-)Don't like ads? PRO users don't see any ads ;-)
Guest

jlgaddis

By: a guest on Jan 31st, 2010  |  syntax: None  |  size: 1.35 KB  |  hits: 755  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
This paste has a previous version, view the difference. Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. I'm trying to do the following:
  2.  
  3. 1.      Permit SQL database traffic (TCP/66) from the Public server (200.100.0.10) to the Dallas host. (192.168.100.10)
  4. 2.      Permit SQL database traffic (TCP/66) from the Public server to the Dallas server. (192.168.100.11)
  5. 3.      Permit SQL database traffic (TCP/66) from the Public server to the Chicago host. (192.168.200.10)
  6. 4.      Permit SQL database traffic (TCP/66) from the Public server to the Chicago server. (192.168.200.11)
  7. 5.      Deny all other TCP traffic from the Public server to any destination.
  8. 6.      Permit all other traffic.
  9.  
  10.  
  11. This was the ACL I wrote:
  12.  
  13. access-list 100 permit tcp 200.100.0.10 0.0.0.255 192.168.100.10 0.0.0.255 eq 66
  14. access-list 100 permit tcp 200.100.0.10 0.0.0.0 eq 66 192.168.100.10 0.0.0.0
  15. access-list 100 permit tcp 200.100.0.10 0.0.0.255 192.168.100.11 0.0.0.255 eq 66
  16. access-list 100 permit tcp 200.100.0.10 0.0.0.0 eq 66 192.168.100.11 0.0.0.0
  17. access-list 100 permit tcp 200.100.0.10 0.0.0.255 192.168.200.10 0.0.0.255 eq 66
  18. access-list 100 permit tcp 200.100.0.10 0.0.0.0 eq 66 192.168.200.10 0.0.0.0
  19. access-list 100 permit tcp 200.100.0.10 0.0.0.255 192.168.200.11 0.0.0.255 eq 66
  20. access-list 100 permit tcp 200.100.0.10 0.0.0.255 eq 66 192.168.200.11 0.0.0.0
  21. access-list 100 deny tcp 200.100.0.10 0.0.0.255 any
  22. access-list 100 deny tcp 200.100.0.10 0.0.0.0 any
  23. access-list permit ip any any