Question

VDX's NOS - IPv4Address and Wildcard Mask do not work? A bug?

  • 21 February 2019
  • 1 reply
  • 244 views

hi everyone
I test a following ACL on a VE(10.5.8.254)

code:
ip access-list extended protect-10_5_8_0-VE
seq 10 permit ip host 10.5.8.97 host 10.5.8.254
seq 11 permit ip host 10.5.8.49 host 10.5.8.254
seq 20 permit ip 10.5.8.0 255.255.255.0 host 10.5.8.254
seq 21 permit tcp 10.5.8.0 255.255.255.0 host 10.5.8.254
seq 22 permit udp 10.5.8.0 255.255.255.0 host 10.5.8.254
seq 30 hard-drop ip any host 10.5.8.254


If I remove seq 10 & 11 then both hosts 10.5.8.97 & 10.5.8.49 loose connection to 10.5.8.254.

What do I miss here?
A bug?

many thanks, P.

1 reply

Userlevel 2
Please update the subnet mask to 0.0.0.255, then retry.

code:
ip access-list extended protect-10_5_8_0-VE
seq 10 permit ip host 10.5.8.97 host 10.5.8.254
seq 11 permit ip host 10.5.8.49 host 10.5.8.254
seq 20 permit ip 10.5.8.0 0.0.0.255 host 10.5.8.254
seq 21 permit tcp 10.5.8.0 0.0.0.255 host 10.5.8.254
seq 22 permit udp 10.5.8.0 0.0.0.255 host 10.5.8.254
seq 30 hard-drop ip any host 10.5.8.254

Reply