Hi..Dear all, answer whatever you know
1)I am very confused with access-list now, I have named my access-list as
below
ip access-list extended a3000
permit tcp any eq 3000 any log
permit udp any eq 3000 any log
permit tcp any any eq 3000 log
permit udp any any eq 3000 log
ip access-list extended range
permit tcp any any range 8194 8294 log
permit udp any any range 48129 48192 log
ip access-list extended telnet
permit tcp host 57.198.165.199 any eq telnet log
permit tcp host 57.198.165.229 any eq telnet log
But I found when apply multiple access group in the int E0,
like below
Router(config-if)#ip access-group a3000 in
Router(config-if)#ip access-group range in
Router(config-if)#ip access-group telnet in
but when I Router#sh run only ip access-group telnet in shown in the config
(the last one), where are the a3000, range ??
2)When I type sh access-list, why it shows me that access-group "range" is
still applied as shown below. Besides, why the line
permit tcp host 199.105.182.190 eq 8194 host 192.168.3.112 eq 8201 (17
matches) and etc appear in the Extended IP access list telnet and I thought
it should show in the Extended IP access list range
Extended IP access list range
permit tcp any any range 8194 8294 log (6 matches)
permit udp any any range 48129 48192 log (56 matches)
Extended IP access list telnet
permit tcp host 199.105.182.190 eq 8194 host 192.168.3.112 eq 8201 (17
matches)
permit udp host 199.105.182.86 eq 48129 host 192.168.3.107 eq 48129 (184
matches)
permit tcp host 199.105.182.189 eq 8194 host 192.168.3.112 eq 8198 (18
matches)
permit udp host 199.105.182.86 eq 48129 host 192.168.3.110 eq 48129 (193
matches)
permit tcp host 57.198.165.199 any eq telnet log
permit tcp host 57.198.165.229 any eq telnet log
3)In my config file, there are entry like "no ip route-cache" as shown
below, may I know how to delete it?
!
interface Ethernet0
description Interface facing Financial Service Provider
ip address 192.168.3.1 255.255.255.0
ip access-group 100 in
no ip directed-broadcast
ip nat outside
no ip route-cache
no ip mroute-cache
4)when I do a on router
SIN01>sh ip route connected
C 58.199.164.0/22 is directly connected, FastEthernet0/0
C 58.199.126.0/27 is directly connected, FastEthernet0/0
Why two networks can state directly connected to one interface, what does it
mean??
==================================================================
De informatie opgenomen in dit bericht kan vertrouwelijk zijn en
is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht
onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en
de afzender direct te informeren door het bericht te retourneren.
==================================================================
The information contained in this message may be confidential
and is intended to be exclusively for the addressee. Should you
receive this message unintentionally, please do not use the contents
herein and notify the sender immediately by return e-mail.
==================================================================
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
