From: Jared Scrivener (jscrivener@ipexpert.com)
Date: Tue Feb 17 2009 - 12:21:53 ARST
Hey John,
RFC1918 is just the three ranges you specified. If the actual lab refers to
that, then don't match anything else and you'll be fine.
Cheers,
Jared Scrivener CCIE3 #16983 (R&S, Security, SP), CISSP
Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Fax: +1.810.454.0130
Mailto: jscrivener@ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of John
Ciccone
Sent: Tuesday, 17 February 2009 9:12 AM
To: Cisco certification
Subject: Block RFC 1918 Addresses
I recently took a vendors mock lab where the task asked block all RFC1918
adddress. So, I created an access-list and applied it to deny the
following:
10.0.0.0/8
172.16.0.0/12
192.168.0.0/16
I've read RFC1918 from top to bottom, and the above addresses are the only
ones mentioned. However, upon checking my answers with the solutions, they
also included the following:
127.0.0.0/8
169.254.0.0/16
Now, while the above addresses are not valid internet addresses, they are
NOT RFC1918 addresses. If the question stated that I should block non valid
internet addresses, then I could see denying the two ip blocks above as
well. But even in that case, there are at least a half dozen more ipv4
blocks that are either not valid or not yet allocated for the internet.
My main question is this: If I get the same type of task on the actual lab,
what do I do? Will the questions be specific enough to leave no doubt
as to what they are looking for (not only for this type of questions, but
any others as well)? If there are any doubt's about what they are looking
for, how helpful will the proctor be in clarifying?
I am scheduled to take the lab in 3 weeks, so any help would be greatly
appreciated.
Thanks.
John
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:11 ARST