RE: Access to Home Router

From: Guilherme Correia (razzolini80@hotmail.com)
Date: Tue Nov 11 2003 - 22:46:57 GMT-3

• Next message: Volkov Dmitry: "RE: Access to Home Router"
• Previous message: Jay Hennigan: "RE: Access to Home Router"
• Maybe in reply to: Vang, Austin: "Access to Home Router"
• Next in thread: Volkov Dmitry: "RE: Access to Home Router"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

to test if the access-list is correct...after all is working reinstate the
access list; I have the same configuration on my remote lab with no default
route on the terminal server...

From: Jay Hennigan <jay@west.net>
To: Guilherme Correia <razzolini80@hotmail.com>
CC: ccielab@groupstudy.com
Subject: RE: Access to Home Router
Date: Tue, 11 Nov 2003 17:34:10 -0800 (PST)

On Wed, 12 Nov 2003, Guilherme Correia wrote:

> remove the access list..no default route is necessary...

Why do you say this? The source outside address passed by the D-link will
not be changed, and thus will not be in the 10.100.100.x subnet.

Removing the access list will:

* Weaken security as the vty would be accessible from the world (if it had
   a route back to the world.)

* Not address the problem of the terminal server having no route back to the
   outside.

--
Jay Hennigan - CCIE #7880 - Network Administration - jay@west.net
WestNet:  Connecting you to the planet.  805 884-6323      WB6RDV
NetLojix Communications, Inc.  -  http://www.netlojix.com/

• Next message: Volkov Dmitry: "RE: Access to Home Router"
• Previous message: Jay Hennigan: "RE: Access to Home Router"
• Maybe in reply to: Vang, Austin: "Access to Home Router"
• Next in thread: Volkov Dmitry: "RE: Access to Home Router"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 12 2003 - 12:29:10 GMT-3