Access-Lists - my most time consuming topic - Help

From: Kal Han (calikali2006@gmail.com)
Date: Sat Dec 09 2006 - 20:04:29 ART

• Next message: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Previous message: Kal Han: "Re: BGP through PIX Question"
• Next in thread: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Maybe reply: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi
I noticed that im spending a lot of time on access-lists.
What is the easy way to remember the acl entries..

                                [R4]
                                   |
inside----[R1]----[PIX]---[R2]---[R3]----[R6]
                                             |
                                          [R5]

over the period of exam... I see questions like
"assume there is a webserver on inside, cofigure pix to allow
web access to that host" , R1 is configured with NTP,
R1 has some PAM configured, there is a ACS server
on the inside, which an outside router is accessing
for tacacs..." type of usual questions...

When trying to configure access-list on R1,
what is the easy way to remember all the above related
config done earlier ? How are you guys doing it.

I am taking a lot of time but coming up with correct answer.
other than the *"assume there is a webserver on inside, cofigure pix to
allow*
*web access to that host"*
type of question.. which i always forget. Is it required to have such an
acl ??

• Next message: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Previous message: Kal Han: "Re: BGP through PIX Question"
• Next in thread: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Maybe reply: Kal Han: "Re: Access-Lists - my most time consuming topic - Help"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Jan 02 2007 - 07:50:37 ART