If telnet connection is made from internal 10.2.2.2 to outside host 10.1.1.1, it will allow returning telnet packets. If you do not use second statment, you will still be able to telnet to 10.1.1.1 from 10.2.2.2 machine. Note that 10.1.1.1 will not be able to initiate telnet connection to your 10.2.2.2
If you use second statment, your are ONLY permitting internal host 10.2.2.2, to telnet to 10.1.1.1. All other outbound packets will be denied.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...