From: Charles Henson (chenson@gmail.com)
Date: Fri Nov 07 2008 - 13:40:46 ARST
GS,
I am a few weeks out from my first lab and I'm trying to do some
strategy tuning. One of the things I'm trying to get savvy on is navigating
the DOC CD better. I'm going thru old labs and stuff and trying to find the
answers for gray areas. I am having trouble finding the answer for the below
problem in the DOC CD. I'm sure it's out there but I can't find it. Any help
would be appreciated.
PS: No, I'm not ready and I'm two weeks out. Can you sense the panic in my
email? Maybe you are never "ready" until you pass....
PROBLEM:
use VACL on switch to only allow IP addresses from 1.1.1.1 and
1.1.1.2 to talk.
RESOLUTION:
access-list 123 permit ip host 1.1.1.1 host 1.1.1.2
access-list 123 permit ip host 1.1.1.2 host 1.1.1.1
mac access-list extended permitarp
permit any any 0x806 0x0
vlan access-map MYMAP 10
action forward
match ip address 123
vlan access-map MYMAP 20
action forward
match mac address permitarp
vlan access-map isp-link 30
action drop
vlan filter MYMAP vlan-list 99
MY ISSUE:
I can't find anything in the DOCCD that references the ethertype for
the arp (0x806) or the mask (0x0). I know the answer because I've memorized
it but that won't help me with the next question about a different ethertype
or a different mask.
Any guidance would be appreciated. Thanks.
-- CharlesBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Dec 01 2008 - 08:18:29 ARST