|
This page was exported from Free Cisco Training & Resources - Certification Exam Preparation
[ https://www.ciscobibles.com ] Export date: Sun May 11 13:36:39 2025 / +0000 GMT |
||||
CCSP SNRS Lab2 - Lock-and-Key (Dynamic Access Lists)
【Lab Topology】
【Lab Object】 Technical characteristics: 1. Provide the authentication based on the single user. 2. Simplify the management in a large network. 3. Reduce the handling burden of the router, as the list is temporary and is not written statically. 4. Reduce the possibility of address spoofing attack.
【Lab Process】 1. The configuration steps of Dynamic Access Lists:
Here, timeout time is implicit, if time exceeds this time, re-authentication must be performed.
After the success of authentication, the whole network will be allowed if not adding the host based on the host authentication. 2. Test: When the inside router wants to access the outside router, first, telnet the gateway router, after the success of authentication, disconnect telnet and then the list will be generated dynamically on the gateway router. Thus the inside router can access the outside router. But the gateway router configured as above can't be login by telnet, Autocommand can be written under the username, thus the gateway router can be login
Clear the generated dynamic access list:
|
||||
|
Post date: 2010-08-14 11:24:29 Post date GMT: 2010-08-14 03:24:29 Post modified date: 2010-08-14 11:24:29 Post modified date GMT: 2010-08-14 03:24:29 |
||||
| Powered by [ Universal Post Manager ] plugin. HTML saving format developed by gVectors Team www.gVectors.com |
