Skip to main content

conduit vs. access-list commands

More
17 years 7 months ago #20736 by FiercePowahs
conduit vs. access-list commands was created by FiercePowahs
can anyone help me understand the difference between these commands?

I could use either:

access-list outside_access_in permit tcp any host 72.*.*.79 eq www
static (inside,outside) 72.*.*.79 192.168.1.5 netmask 255.255.255.255 0 0

OR

conduit permit tcp host 72.*.*.79 eq www any
static (inside,outside) 72.*.*.79 192.168.1.5 netmask 255.255.255.255 0 0

Is there a real difference?
More
17 years 7 months ago #20737 by Smurf
Replied by Smurf on topic Re: conduit vs. access-list commands
Not really however Cisco are looking to drop the conduit command to bring it more in line with Router IOS.
Wayne Murphy
Firewall.cx Team Member
www.firewall.cx

Now working for a Security Company called Sec-1 Ltd in the UK, for any
Penetration Testing work visit www.sec-1.com or PM me for details.
More
17 years 7 months ago #20744 by d_jabsd
Replied by d_jabsd on topic Re: conduit vs. access-list commands

Not really however Cisco are looking to drop the conduit command to bring it more in line with Router IOS.



Read the above as- Do not use conduits.

They are deprecated in favor of ACLs.

They are present in the later 6.3(x) releases for backwards compatibility and legacy configurations only. IIRC, they aren't even available in 7.x releases and not worth learning except to convert old configs from conduits to ACLs.
Time to create page: 0.129 seconds