I am not sure why you would use this either, but that is how they show it in the doc. Weird, no QA apparently on documentation. You would think this would be more accurate since it is used so much by CCIE candidates.
btw, I am running 12.4.19 adventerprise and can get that error over and over..you would think IOS is intelligent enough to figure out that the first line (seq 10 in this case) denies all. In this version, it apparently does, however, if I add the wildcard mask, it allows it. Weird. R4(config)#access-list 1 deny 0.0.0.0 255.255.255.255 R4(config)#access-list 1 permit 1.0.0.0 % Access rule can't be configured at higher sequence num as it is part of the existing rule at sequence num 10 R4(config)#do sh access-list 1 Standard IP access list 1 10 deny any R4(config)#access-list 1 permit 1.0.0.0 0.255.255.255 R4(config)#do sh access-list 1 Standard IP access list 1 10 deny any 20 permit 1.0.0.0, wildcard bits 0.255.255.255 -R ________________________________ From: Bryan Bartik <[email protected]> To: Rob Routt <[email protected]> Cc: prakash patel <[email protected]>; [email protected] Sent: Tuesday, May 26, 2009 12:29:11 PM Subject: Re: [OSL | CCIE_RS] Cisco Documentation Question on Distribute-list/Prefix-list Rob, You are right. The deny 0.0.0.0/32 effectively denies all routes. As for the message you get when configuring the ACL, I have not seen that. IOS lets me configure it as such: R2(config)#access-list 1 deny 0.0.0.0 255.255.255.255 R2(config)#access-list 1 permit 1.0.0.0 R2(config)# Not sure what this would be used for. Bryan Bartik CCIE #23707 (R&S), CCNP Sr. Support Engineer - IPexpert, Inc. URL: http://www.IPexpert.com
