[nsp] RE: Time limiting ISDN connections < further
Gert Doering
gert@greenie.muc.de
Thu, 10 Oct 2002 09:36:40 +0200
Hi,
On Wed, Oct 09, 2002 at 05:09:04PM -0400, Dave [Hawk-Systems] wrote:
> >Another approach would be to make the "dialer-list" a time based access
> >list (if that is possible), so that after the permitted time, all traffic
> >will be considered "uninteresting" and the idle-timer will kick them
> >out...
>
> We are using Cisco 802 routers, didn't see any options for time based dialer or
> access lists.
I think that's an IOS 12.2 or 12.2T feature. Any extended access list
can be time-qualified. It looks like this:
time-range slowtime
periodic weekdays 9:00 to 18:00
...
access-list 110 permit tcp any eq uucp any time-range uucp-slow
access-list 110 permit tcp any eq www any time-range slowtime
access-list 110 permit tcp any eq ftp-data any time-range slowtime
access-list 110 permit tcp any any eq ftp-data time-range slowtime
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert@greenie.muc.de
fax: +49-89-35655025 gert.doering@physik.tu-muenchen.de