Thanks!
----- Original Message -----
From: "Dennis Griffin"
To:
Sent: Thursday, June 21, 2001 1:36 PM
Subject: RE: Access-list [7:9292]
Oh forgot to say: ACLs only restrict traffic flowing THROUGH the router and
Not traffic generated FROM the router, so the VTY filter is indeed necessary
to filter telnet from B.
Now, as you can guess, without the vty filter you have a security hole. If
user can gain administrative access to Router B, he/she can generate traffic
which compromises the spirit of your ACL. If this is an issue, you must
close Router B to all telnet access, or restrict the Privileged password so
the vty filter cannot be circumvented.
Dennis
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=9443&t=9292
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
