Re: access list problem
- From: Doan <doan@xxxxxxx>
- Date: Mon, 28 Aug 2006 11:03:36 -0700
The "show access-list 1" command. Are you getting hits on the ACL?
Doan
On Mon, 28 Aug 2006, tony wrote:
what command? Here is sh line before and after the second host telenets in
before
edu-cer-3750A#show line
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise Overruns
Int
0 CTY - - - - - 0 0
0 -
* 1 VTY - - - - 1 20 0
0 -
2 VTY - - - - 1 7 0
0 -
3 VTY - - - - 1 0 0
0 -
4 VTY - - - - 1 0 0
0 -
5 VTY - - - - 1 0 0
0 -
6 VTY - - - - 1 0 0
0 -
7 VTY - - - - 1 0 0
0 -
8 VTY - - - - 1 0 0
0 -
9 VTY - - - - 1 0 0
0 -
10 VTY - - - - 1 0 0
0 -
11 VTY - - - - 1 0 0
0 -
12 VTY - - - - 1 0 0
0 -
13 VTY - - - - 1 0 0
0 -
14 VTY - - - - 1 0 0
0 -
15 VTY - - - - 1 0 0
0 -
16 VTY - - - - 1 0 0
0 -
After second host telnet in
edu-cer-3750A#show line
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise Overruns
Int
0 CTY - - - - - 0 0
0 -
* 1 VTY - - - - 1 20 0
0 -
* 2 VTY - - - - 1 8 0
0 -
3 VTY - - - - 1 0 0
0 -
4 VTY - - - - 1 0 0
0 -
5 VTY - - - - 1 0 0
0 -
6 VTY - - - - 1 0 0
0 -
7 VTY - - - - 1 0 0
0 -
8 VTY - - - - 1 0 0
0 -
9 VTY - - - - 1 0 0
0 -
10 VTY - - - - 1 0 0
0 -
11 VTY - - - - 1 0 0
0 -
12 VTY - - - - 1 0 0
0 -
13 VTY - - - - 1 0 0
0 -
14 VTY - - - - 1 0 0
0 -
15 VTY - - - - 1 0 0
0 -
16 VTY - - - - 1 0 0
0 -
edu-cer-3750A#
"Doan" <doan@xxxxxxx> wrote in message
news:Pine.GSO.4.33.0608281028210.29624-100000@xxxxxxxxxxxxxxx
Can you repeat the command after telneting from 10.10.10.5 and other
hosts? I want to see if you are getting any hit on the access-list 1.
Doan
On Mon, 28 Aug 2006, tony wrote:
edu-cer-3750A#sh access-list 1
Standard IP access list 1
permit 10.10.10.5
deny any
"Doan" <doan@xxxxxxx> wrote in message
news:Pine.GSO.4.33.0608251614540.5434-100000@xxxxxxxxxxxxxxx
Can you do a "show access-list 1"?
Doan
On Fri, 25 Aug 2006, tony wrote:
Its still does not work
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise
Overruns
Int
0 CTY - - - - - 0 0
0 -
* 1 VTY - - - - 1 16 0
0 -
* 2 VTY - - - - 1 7 0
0 -
3 VTY - - - - 1 0 0
0 -
4 VTY - - - - 1 0 0
0 -
5 VTY - - - - 1 0 0
0 -
6 VTY - - - - 1 0 0
0 -
7 VTY - - - - 1 0 0
0 -
8 VTY - - - - 1 0 0
0 -
9 VTY - - - - 1 0 0
0 -
10 VTY - - - - 1 0 0
0 -
11 VTY - - - - 1 0 0
0 -
12 VTY - - - - 1 0 0
0 -
13 VTY - - - - 1 0 0
0 -
14 VTY - - - - 1 0 0
0 -
15 VTY - - - - 1 0 0
0 -
16 VTY - - - - 1 0 0
0 -
"Doan" <doan@xxxxxxx> wrote in message
news:Pine.GSO.4.33.0608251503100.5434-100000@xxxxxxxxxxxxxxx
There is your problem. You have more than 5 VTY lines!
Try vty 0 16
access-class 1 in
Doan
On Fri, 25 Aug 2006, tony wrote:
Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise
Overruns
Int
0 CTY - - - - - 0 0
0 -
* 1 VTY - - - - 1 15 0
0 -
2 VTY - - - - 1 4 0
0 -
3 VTY - - - - 1 0 0
0 -
4 VTY - - - - 1 0 0
0 -
5 VTY - - - - 1 0 0
0 -
6 VTY - - - - - 0 0
0 -
7 VTY - - - - - 0 0
0 -
8 VTY - - - - - 0 0
0 -
9 VTY - - - - - 0 0
0 -
10 VTY - - - - - 0 0
0 -
11 VTY - - - - - 0 0
0 -
12 VTY - - - - - 0 0
0 -
13 VTY - - - - - 0 0
0 -
14 VTY - - - - - 0 0
0 -
15 VTY - - - - - 0 0
0 -
16 VTY - - - - - 0 0
0 -
"Doan" <doan@xxxxxxx> wrote in message
news:Pine.GSO.4.33.0608251422160.5434-100000@xxxxxxxxxxxxxxx
On Fri, 25 Aug 2006, tony wrote:
i am trying to restrict telnet to a switch from one host onlyWhat does a "show line" say?
so I did
access-list 1 permit host 10.10.10.5
line vty 0 4
access-class 1 in
but another host on the 10.10.10.x net can still telnet to the
switch
What is wrong?
Doan
.
- References:
- access list problem
- From: tony
- Re: access list problem
- From: Doan
- Re: access list problem
- From: tony
- Re: access list problem
- From: Doan
- Re: access list problem
- From: tony
- Re: access list problem
- From: Doan
- Re: access list problem
- From: tony
- Re: access list problem
- From: Doan
- Re: access list problem
- From: tony
- access list problem
- Prev by Date: Re: matched memory stick pair for cisco 3825
- Next by Date: Re: access list problem
- Previous by thread: Re: access list problem
- Next by thread: Re: access list problem
- Index(es):
Relevant Pages
|
