From: Victor Cappuccio (cvictor@protokolgroup.com)
Date: Sun Oct 30 2005 - 19:02:54 GMT-3
Hi George,
Yesterday I That L&K Lab and I learn that Dynamic ACL are maintained
dynamically for a time range (when there is an external event == AKA Telnet
to the Router) (that is the timeout (time left) defined in the dynamic ACL),
also in the line vty using the autocommand access-enable timeout 5, This
Timeout means that in a period of no activity the TimeRange (time left)
defined in the timeout in the ACL will be decreased, but when there is
activity that timeout is going to be added to that period of time
HTH
Victor.
----- Original Message -----
From: "George Cosmo" <george.cosmo@gmail.com>
To: "Cisco certification" <ccielab@groupstudy.com>
Sent: Sunday, October 30, 2005 5:08 PM
Subject: dynamic acl (absolute timeout)
> Router(config)#access-list 184 dynamic test2 timeout ?
> *<1-9999> Maximum time to live* -------->* is this in minutes . as per
> explanation *
>
> then how do i read this:
>
> Router#sh access-lists 184
> Extended IP access list 184
> permit tcp any host x.x.x.x eq telnet (80 matches)
> Dynamic test2 permit ip any any
> *permit ip any any (40 matches) (time left 277) --> i have noticed it
always
> starts at 300 ( what is this value)*
>
> is the time left in seconds? or is it is seconds, i should see this start
at
> 600 sec, as I have set asboulte timeoute to 10 min.
>
> any ideas??
>
> thanks in advance !!!!
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Sun Nov 06 2005 - 22:00:55 GMT-3