[nsp] VTY ACL
Voll, Scott
Scott.Voll at wesd.org
Wed Jul 16 12:08:12 EDT 2003
Not sure about the answer but I've always used standard ACL for my VTY
Access-list 1 permit 10.200.1.0 0.0.0.255 (management Class C)
--Scott
-----Original Message-----
From: Damien Holloway [mailto:d.holloway at hill.com]
Sent: Wednesday, July 16, 2003 10:50 AM
To: cisco-nsp at puck.nether.net
Subject: [nsp] VTY ACL
I applied an ACL to the vty interface on a router
access-list 101 permit tcp host 10.1.1.1 host 10.2.2.2 eq telnet
line vty 0 4
access-class 101 in
and the host 10.1.1.1 **cannot** telnet to the router on 10.2.2.2
BUT if I do this
access-list 101 permit tcp host 10.1.1.1 any eq telnet
line vty 0 4
access-class 101 in
and the host 10.1.1.1 **can** telnet to the router on 10.2.2.2
Why would the first example NOT work???
I am confused
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
http://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list