On Fri, 19 Nov 1999, Anthony Nikiforov wrote:
> На 2514 стоит стандартная 11.2 IP Only
Номер версии все равно не указан... :(
> Есть ешо 2511 с 12.x IP Only (не помню) так она тоже не понимает
Номер версии все равно не указан... :(
> 3600 с 11.x IP Only.
Номер версии все равно не указан... :(
> На какую менять? Скажите, вкакой это дело работает?
>
3640 - 12.0(4)T - IP Only
chuck(config)#access-list 177 permit tcp any any ?
ack Match on the ACK bit
eq Match only packets on a given port number
established Match established connections
fin Match on the FIN bit
gt Match only packets with a greater port number
log Log matches against this entry
log-input Log matches against this entry, including input interface
lt Match only packets with a lower port number
neq Match only packets not on a given port number
precedence Match packets with given precedence value
psh Match on the PSH bit
range Match only packets in the range of port numbers
rst Match on the RST bit
syn Match on the SYN bit
time-range Specify a time-range
tos Match packets with given TOS value
urg Match on the URG bit
<cr>
2511 - 12.0(5) - FW Feature Set
access(config)#access-list 177 permit Tcp any any ?
ack Match on the ACK bit
eq Match only packets on a given port number
established Match established connections
fin Match on the FIN bit
gt Match only packets with a greater port number
log Log matches against this entry
log-input Log matches against this entry, including input interface
lt Match only packets with a lower port number
neq Match only packets not on a given port number
precedence Match packets with given precedence value
psh Match on the PSH bit
range Match only packets in the range of port numbers
rst Match on the RST bit
syn Match on the SYN bit
tos Match packets with given TOS value
urg Match on the URG bit
<cr>
2514 - 11.1(22) - IP Only
побитного матча не понимает...
5300 - 11.3(6)T1 - IP Only
as5300(config)#access-list 177 permit tcp any any ?
ack Match on the ACK bit
eq Match only packets on a given port number
established Match established connections
fin Match on the FIN bit
gt Match only packets with a greater port number
log Log matches against this entry
log-input Log matches against this entry, including input interface
lt Match only packets with a lower port number
neq Match only packets not on a given port number
precedence Match packets with given precedence value
psh Match on the PSH bit
range Match only packets in the range of port numbers
rst Match on the RST bit
syn Match on the SYN bit
tos Match packets with given TOS value
urg Match on the URG bit
<cr>
>
> -----Исходное сообщение-----
> От: Alex Bakhtin <bakhtin@amt.ru>
> Кому: inet-admins@info.east.ru <inet-admins@info.east.ru>
> Дата: 18 ноября 1999 г. 21:44
> Тема: Re: [inet-admins] cisco не знает 'ip nat', а еще и про syn
>
>
> >>>>>> "AN" == Anthony Nikiforov writes:
> >Добрый вечер.
> >
> >AN> Господа! Помоему в тему. Чё делать access-list xxx
> >AN> ................ syn (т.е. setup tcp соединения) в 3600 работает, а в
> >AN> 2514 нет. Что посоветуете?
> >
> > Ну, версию IOSа поменять;)
> >
> >--
> >Best regards, -- Alex Bakhtin.
> >AMT Group, Cisco Systems Gold Partner,
> >===========================================================================
> ==
> >"inet-admins" Internet access mailing list. Maintained by East Connection
> ISP.
> >Mail "unsubscribe inet-admins" to Majordomo@info.east.ru if you want to
> quit.
> >Archive is accessible on
> >
>
> =============================================================================
> "inet-admins" Internet access mailing list. Maintained by East Connection ISP.
> Mail "unsubscribe inet-admins" to Majordomo@info.east.ru if you want to quit.
> Archive is accessible on
>
--------------------------------------
Basil (Vasily) Dolmatov CCNP-Security, CCDA
East Connection ISP, Moscow, Russia. ()
=============================================================================
"inet-admins" Internet access mailing list. Maintained by East Connection ISP.
Mail "unsubscribe inet-admins" to Majordomo@info.east.ru if you want to quit.
Archive is accessible on
