Task 8.1. The ACL needing WWW or WWW syn?
Just though that the ACL only really needs WWW and SYN for the logging of non RFC1918 addresses and configured it as such i.e.
ip access-list extended HTTP.LOG
permit tcp 10.0.0.0 0.255.255.255 host 172.30.102.100
permit tcp 172.16.0.0 0.15.255.255 host 172.30.102.100
permit tcp 192.168.0.0 0.0.255.255 host 172.30.102.100
permit tcp any host 172.30.102.100 eq www syn log-input
permit ip any any
As it allows all tcp WWW traffic to hit the previous ACEs or am I wrong here and do I need eq WWW or eq WWW SYN to make a correct filter match to leave non RFC sources to hit eq WWW SYN?