Hi Guys, I have a couple of questions regarding Task 16.3 from WB1:
- In the DSG, why the ACL that we use for TACACS server (150.100.81.100) is "deny tcp host 150.100.81.100 *any *eq tacacs" and not "deny tcp *any *host 150.100.81.100 eq tacacs" since users will source traffic from ANY IP to the server on port TCP 49?? - Also, the DSG shows that the ACLs are applied (inside) on interfaces S0/0/0 and F0/0. The one applied to S0/0/0 seems good for me but the other one should be applied to F0/1 since traffic is sourced from Vlan 2200 (150.100.81.x/24). Thanks in advance. Regards, Juan
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
