From: John Matus (john_matus@hotmail.com)
Date: Tue Jun 21 2005 - 20:14:01 GMT-3
i'm a bit confused about the "proper" way to configure a dynamic
acl.........i've ready the "cisco" way and seen the "IE" way but am confused
about which way to go.........
let's say that i want to allow one telnet host into R1......i've seen 2 ways
to do it
R1 (iIE WAY)
user r1 password cisco
line vty 0 4
login local
autocommand access enable host timeout 5
access-list extended auto
dynamic telent permit tcp host 1.2.3.4 host 150.1.1.1 eq telnet
deny tcp any any eq telnet
permit ip any any
r1 (CISCO WAY)
user r1 password cisco
line vty 0 4
login local
autocommand access enable host timeout 5
acccess-list extended auto
pemrit tcp host 1.2.3.4 host 150.1.1.1 eq telnet
dynamic telnet timeout 120 pemit ip any any
what is the functional difference between the two?
This archive was generated by hypermail 2.1.4 : Wed Jul 06 2005 - 14:43:42 GMT-3