iewb-rs vol-1 lab-6

From: Rajib Khan (rajib56666@yahoo.com)
Date: Tue Jul 05 2005 - 07:19:07 GMT-3

• Next message: Anthony Sequeira: "Re: eigrp"
• Previous message: hin ccie: "IPv6 Question - Site Local Address Format from ipv4"
• Next in thread: Shanky: "Re: iewb-rs vol-1 lab-6"
• Maybe reply: Shanky: "Re: iewb-rs vol-1 lab-6"
• Maybe reply: Amit Jain: "Re: iewb-rs vol-1 lab-6"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi
 
In the security section of the above ie lab, there is a question about sw2 should accept udp echos from 191.1.77.100. however sw2 should not respond to packet sent to udp "DIscard" and "chargen" from the above host. Following config was given
 
service udp-small-servers
int f0/0
ip access-group 100 in
 
 
acc 100 deny udp any any eq discard
acc 100 den udp any any eq 19
acc 100 per ip any any
 
I think above is wrong should it not be like below
 
acce 100 den udp host 191.1.77.100 eq discard any
                                                     eq 19
                                permit ip any any
 
COuld any one please help
 
Thanks
 
Raj
 
 

• Next message: Anthony Sequeira: "Re: eigrp"
• Previous message: hin ccie: "IPv6 Question - Site Local Address Format from ipv4"
• Next in thread: Shanky: "Re: iewb-rs vol-1 lab-6"
• Maybe reply: Shanky: "Re: iewb-rs vol-1 lab-6"
• Maybe reply: Amit Jain: "Re: iewb-rs vol-1 lab-6"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Sep 04 2005 - 17:00:29 GMT-3