From: Khawar Butt (khawarb@khawarb.com)
Date: Mon Jun 16 2008 - 04:41:37 ART
Hi,
If you look closely, you have applied the no-www to the ACL; It is showing
as active on the time-range and active on the ACL. That is correct. I think
you are looking at the worktime Time-range; which is "inactive". You haven't
applied worktime to any of the ACL entries.
Best Regards
Khawar Butt
CCIE#12353 (R/S , Security , SP , Voice)
http://www.khawarb.com
http://www.netmetric-solutions.com
E-mail : khawarb@khawarb.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of ccie
Sent: Monday, June 16, 2008 12:56 PM
To: ccielab@groupstudy.com
Subject: configure time based ACL
I experts,
I configure a time based ACL, then change the clock of the router to be
outside this range. The time range show me it is inactive, while the time
based ACE show me it is a active!!!!!!!!!!!
R5#sho time-range
time-range entry: no-www (active)
used in: IP ACL entry
time-range entry: worktime (inactive)
periodic weekdays 8:00 to 18:00
R5#sho access-list
Extended IP access list no-www
10 deny tcp 3.3.56.0 0.0.0.255 any eq www time-range no-www (active)
20 permit ip any any
Regards,
Amin
This archive was generated by hypermail 2.1.4 : Tue Jul 01 2008 - 06:23:21 ART