Johan, In that task, R4 should telnet to port 23 on R5, and R2 should telnet to port 3025 on R5. Therefore R4 does not need to use the virtual telnet to authenticate.
Regards, Brandon Carroll - CCIE #23837 Senior Technical Instructor - IPexpert Mailto: [email protected] Telephone: +1.810.326.1444 Live Assistance, Please visit: www.ipexpert.com/chat eFax: +1.810.454.0130 IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE (R&S, Voice, Security & Service Provider) certification(s) with training locations throughout the United States, Europe, South Asia and Australia. Be sure to visit our online communities at www.ipexpert.com/communities and our public website at www.ipexpert.com On Apr 28, 2010, at 10:19 PM, Johan Bornman wrote: > The source address of 192.1.24.2 is what I don’t understand. For the task you > mentioned below I understand the explanation but what about 192.1.24.4 on R4, > How will R4 F0/1 authenticate to the virtual telnet address if not allowed in > the ACL? > > > From: Brandon Carroll [mailto:[email protected]] > Sent: 29 April 2010 06:52 AM > To: Johan Bornman > Cc: [email protected] > Subject: Re: [OSL | CCIE_Security] Lab1 Task 1.9 > > The task states: > > R2 should be able to Telnet into 192.1.24.15 (R5‟s translated address). > Configure R5 to allow R2 to telnet into port 3025. Configure the ACL as > needed to allow communication. > > > R2 is 192.1.24.2, The Virtual Telnet address is 192.1.24.9. If you don't > telnet on port 23 to the virtual telnet address you cant authenticate. Once > you do that, from R2, then you can telnet to the 3025 port on R5. > > > > Regards, > > Brandon Carroll - CCIE #23837 > Senior Technical Instructor - IPexpert > Mailto: [email protected] > Telephone: +1.810.326.1444 > Live Assistance, Please visit: www.ipexpert.com/chat > eFax: +1.810.454.0130 > > IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, > Audio Tools, Online Hardware Rental and Classroom Training for the Cisco CCIE > (R&S, Voice, Security & Service Provider) certification(s) with training > locations throughout the United States, Europe, South Asia and Australia. Be > sure to visit our online communities at www.ipexpert.com/communities and our > public website at www.ipexpert.com > > > > On Apr 28, 2010, at 9:44 PM, Johan Bornman wrote: > > > Hi, > > I don’t understand this ACL: > access-list out_in permit tcp host 192.1.24.2 host 192.1.24.9 eq 23 > > Thanks > > Johan > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
