[rbak-nsp] snmp access via other context than local
Marcin Kuczera
marcin at leon.pl
Thu Aug 12 04:54:06 EDT 2010
David Freedman wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>> Is there any simple way to disable snmp access via any other context
>> than local ?
>
> admin-access-group no good?
maybe this is a silly question, but if I apply this in context:
!
context bgp
!
ip access-list no-access
seq 10 deny ip any any
!
admin-access-group no-access in
!
then:
- how about BGP sessions ?
- how about OSPF ?
- how about ICMP ?
As I undestand, this is not that simple and many exceptions must be
considered right ?
So, if you have good examples considering as much as possible cases -
please drop it here ;)
Regards,
Marcin
More information about the redback-nsp
mailing list