Q: I am looking for an access control list, and there is a rule that says “evaluation be” a few deny / permit comamnds. what does this line do?
thanks!
Best Answer: What exactly are you trying to make happen between them? Just simple static routes? It would be a bit tough to just walk you through an entire router setup without basic Cisco knowledge. Simple setup should be just boot it up: enable, configure terminal. From there you should be able to bring up the interface with a no shutdown command from the interface interface name menu. Apply an IP address to the interface with the ip address command. Exit back to configure terminal and you can do static routes with ip route command. Beyond that it obviously gets much more complicated.
Free Listings Report
Re:No, problem. It has been a little while since I have used reflexive ACLs and it does not help that I am tired right now too.
The Explosive Secret List Profit Tactics
Re:ah okay, that makes a lot of sense to me. sorry for being unclear about the reflect keyword. i meant it was used in a permit rule.
: )
MS Access Jumpstart Course
Re:Ok, I did not understand what you posted the last time. I thought you were referring to a command that started with reflect. That is why I said there was no reflect command. So, for your outbound ACLs you need the reflect command at the end with a name for the reflexive ACL. Then on the inbound ACL you have the evaluate command at the end to evaulate the traffic that you wanted to allow back in after it left the network.
Wholesale Directory Instant Access
Re:estab is the keyword for packets not tagged w/ the 'syn' bit, right? so evaluate estab would be to allow traffic permitted out to come back in? estab packets do not have a send or receive direction, so there is no way to differentiate which TCP packets are incoming or outgoing.
sorry if the above doesn't make sense. i'm just confused about what this one line does, and it's not clear to me yet.
thanks for all your help.
How to Start a Pest Control Business | 75% Commissions
Re:Nope, it is for reflexive ACLs. Link (http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_r/ftrafwlr/srfreflx.htm#wp1017392) There is no relflect command that I can find in documentation.
Hottest List Building System. Pays 75% Profit.
Re:isn't that what reflect estab does? i think estab is the keyword for packets that aren't tagged with a send or recieve direction.
Elite Social Control – $25.48 per sale, Crazy Conversions
Re:The evaluate command is for reflexive access lists. Reflexive ACLs allow traffic that was permitted out to return back into the network even if they are not allowed by an access list.
0 Comments.