I've encountered the following ACL (used for policy-map) in an old Cisco 3600 router:
ip access-list extended ftp permit tcp any eq ftp-data any permit tcp any eq ftp any permit tcp any any eq ftp-data permit tcp any any eq ftp permit tcp any any range ftp-data ftp permit tcp any range ftp-data ftp any My understanding is that the first 4 rules are reduntant since the last two include traffic from any port to the FTP ports and vice versa. Am I missing something? Thanks in advance.
No comments:
Post a Comment