From: Brian McGahan (bmcgahan@internetworkexpert.com)
Date: Thu Oct 21 2004 - 13:22:08 GMT-3
Both are acceptable. The difference is that when it's on the
VTY line, it applies to all users telneting in. When it's assigned on a
per-user basis, it's only for that specific user.
HTH,
Brian McGahan, CCIE #8593
bmcgahan@internetworkexpert.com
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987 x 705
Outside US: 775-826-4344 x 705
24/7 Support: http://forum.internetworkexpert.com
Live Chat: http://www.internetworkexpert.com/chat/
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
Of
> Edwards, Andrew M
> Sent: Thursday, October 21, 2004 10:26 AM
> To: ccielab@groupstudy.com
> Subject: Re: lock and key ACL
>
> I have a question on Lock and key acls...
>
> Basically I understand the dynamic portion and watching for blocked
> traffic that should normally transit the interface...
>
> My question is that on the DOCCD it says we use the "autocommand
> access-enable" timeout x on the vty ports.
>
> I've also seen the "username xxxx autocommand access-enable timeout x"
> command used.
>
> I'm wondering which is correct. I did this the other night but cant
> remember... fleeting CCIE brain cell. Must have been meant for
beer...
> gotta watch which bit I set in my brain from now on and make sure it's
a
> CCIE bit not the beer bit.
>
> 8)
>
> andy
>
>
This archive was generated by hypermail 2.1.4 : Sat Nov 06 2004 - 17:11:51 GMT-3