From: Vogel Matthew GS-12 CFAO/IRMD (Matthew.Vogel@kadena.af.mil)
Date: Sat Jul 12 2003 - 21:20:34 GMT-3
Mohit,
On question 1, as a best practice you should restrict assess to all vty
ports.
v/r
GS-12 Matthew Vogel
MCSE, CCNP, CCDA
CFAO Network Engineer
Matthew.Vogel@kadena.af.mil <mailto:Matthew.Vogel@kadena.af.mil>
634-6338
-----Original Message-----
From: SHARMA,MOHIT (HP-Germany,ex1) [mailto:mohit.sharma@hp.com]
Sent: Sunday, July 13, 2003 5:17 AM
To: ccielab@groupstudy.com
Subject: Creepy 3550
Hi All,
Some question on ""3550"". Would be great if somebody can clear it up.
1.> If asked to restrcit telnet access. Should it be done on all vty
ports
from 0 15 or just lines 0 4.
2.> if the question states to make sure that the switch never becomes a
root
switch for a particular vlan, should we put the switch prio for that
port as
hisghest, or SHOULD the stp be diabled for that VLAN??
3.> In QOS, if the packets between the phone and the PC should be marked
differently, what is the best way??
Should we mark the packets based on VLAN's, or should we mark the
packets
using the default cos values??
Say with the foll. config0
nterface FastEthernet0/11
switchport access vlan 102
switchport mode trunk
switchport voice vlan 101
switchport trunk encapsulation dot1q
switchport priority extend cos 0
no ip address
mls qos cos 1
mls qos cos override
spanning-tree portfast
Can we classify packets- just based on the vlan???
Thanks as always for your inputs.
Mohit.
This archive was generated by hypermail 2.1.4 : Wed Aug 06 2003 - 06:52:38 GMT-3