Confused about the from / to aspect of access list syntax
Cisco's docs say :
access-list acl_name [deny | permit] protocol source source_netmask destination destination_netmask
but I'm used to seeing configs with
static(inside,outside) xx.xx.xx.41 xx.xx.xx.11 netmask 255.255.255.255
access-list outside extended permit tcp any host xx.xx.xx.41 eq www
if the 241 is the outside we are letting into a webserver shouldn't the access list syntax use the destination (the web server) as the last ip address in it's statement ?
As in access-list outside extended permit tcp any host xx.xx.xx.11 eq www
?