From: Denton Bobeldyk (denny@xxxxxxxxxxxxxx)
Date: Mon Oct 11 1999 - 22:04:49 GMT-3
Ok, I think I have it figured out, and it only took me 1 hour and 15
minutes!!
Yikes!!! If I got that on the exam I would've had to skip it, or hope
that the other
items didn't take me so long.
As far as I can understand it looks like the example on the CD is wrong.
Or at least misleading.
You apparently match a dynamic list to an access-list like follows:
access-list 102 dynamic testlist timeout 5 permit ip any any
access-list 102 permit tcp any any eq telnet
line vty 0 4
password cisco
login
autocommand access-enable
I _think_ what this does is say "Hey, if the user telnets into me and
enters
the correct password (cisco in this case), He'll receive the dynamic
access list
labeled as 'testlist'. If he doesn't telnet into my vty port, he'll
receive the default
access list, which in this case is:
access-list 102 permit tcp any any eq telnet
Which basically denies everything except for telnet access into the
router.
Which you have to allow, else you won't be able to log into the vty
port.
I hope that helps (and is right) that's the best I could do trying to
crank this out
before I pack and leave for the airport in 8 hours... Of course this
isn't a way
I would recommend studying to anybody, but I don't know any CCIE out
there
that actually knew everything before they took the test :)
-Denny
-- -*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*- Denton Bobeldyk MCNE, CCDA, CCNA, CCSI Email: denny@kentwoodps.org Phone: 616-530-9196Master CNE - Connectivity Cisco Certified Design Associate Cisco Certified Network Associate Cisco Certified Systems Instructor
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:21:52 GMT-3