From: Fred Ingham (fningham@xxxxxxxxxxxxxxxx)
Date: Mon Nov 06 2000 - 16:27:54 GMT-3
The lock and key access list in the ECP1 course has two users -
Mary who is allowed to telnet into r1 from r2 and Jim who is
allowed to telnet from r2 to r4 for 5 minutes. Key configuration
commands are:
r1:
username mary password cisco
username jim password cisco
username jim autocommand access-enable
int s0/0.1
ip address 172.16.65.1 255.255.255.0
ip access-group 101 in
access-li 101 dynamic jimslist timeout 5 permit tcp host 172.16.65.2
host 172.16.66.4 eq 23
(other permits for routing protocols, tcp, gre, aurp, ntp, etc. as
appropriate)
(172.16.65.2 is serial interface on r2)
(172.16.66.4 is serial interface on r4)
line vty 0 4
login local
cheers, Fred.
Eddie Parra wrote:
>
> Can someone please email me directly the way Bruce Caslow teaches lock and
> key access lists in ECP1? I know he teaches it differently from the way he
> wrote it in his book. If I remember correctly, the way he teaches it
> doesn't force every users that telnets to authenticate. Only certain users
> that telnet to a specified interface? I can't find my ECP1 book and I can't
> remember. Please email me directly again. Thanks!
>
> -Eddie
>
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:42 GMT-3