Re: "apple distribute-list in/out "command

From: Joe Soricelli (jsoricelli@xxxxxxxx)
Date: Thu Oct 07 1999 - 09:42:47 GMT-3

• Next message: Scott O'Donnell: "Re: Apple filter question."
• Previous message: Joe Soricelli: "Re: Apple filter question."
• Maybe in reply to: alfred zhang: ""apple distribute-list in/out "command"
• Next in thread: alfred zhang: "Re: "apple distribute-list in/out "command"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Answers below.
------------------------------------------------------------------
  Joseph M. Soricelli, CCIE #4803, CCNP, CCSI #20666
  EMAIL: jsoricelli@ccci.com

  Chesapeake Network Solutions
  8110 Gatehouse Road, Suite 101E Phone: (703) 207-0757
  Falls Church, VA 22042 Fax: (703) 207-0441

  FYI - About Chesapeake: We are a Cisco Certified Training and
  professional services partner. We offer most of the Cisco
  training courses as well as training for Fore, NetScout, and
  CheckPoint-1 Firewalls. We provide network consulting services,
  including design, network health, management, firewall,
  and problem solving. We now have 23 CCIEs on our staff
  of instructor/consultants.
-------------------------------------------------------------------

-----Original Message-----
From: alfred zhang <alfredzh@public1.ptt.js.cn>
To: ccielab@groupstudy.com <ccielab@groupstudy.com>
Date: Thursday, October 07, 1999 3:00 AM
Subject: "apple distribute-list in/out "command

>hi,
>
> I have two problems .
>i.)How to use the command "appletalk distribute-list in/out" in
>appletalk eigrp interface?After I enter this command in appletalk eigrp
>interface,I find that there is no change.I must reload the router in
>order to influence the appletalk route.WHY?

Reloading the router just shortens the process. After the list is applied,
it has taken effect but AT takes a LONG time to resolve to the new
information. Either be patient or reload. As a side note, I found this
helpful when preparing for my lab. Get AT running without any filters in
place to make sure that everything isas it should be. Then configure all
the filters you need to in your rack. Once you are confident that
everything is configure and positioned as you would like it, reload the
whole pod.

>ii.)How to deny traceroute packet?

Assuming we are talking about a "standard" Cisco traceroute: It is a UDP
packet that uses a "random" high port number. If you put an extended
access-list on an interface that permits the explict source and destination
and then logs it, you can see the port. In application however, the port
number always starts at 33434 and goes up for each packet that goes out.
You can also see this by doing an extended trace.

>
>Any help will be appreciated.
>
>alfred zhang
>99/10/7
>

• Next message: Scott O'Donnell: "Re: Apple filter question."
• Previous message: Joe Soricelli: "Re: Apple filter question."
• Maybe in reply to: alfred zhang: ""apple distribute-list in/out "command"
• Next in thread: alfred zhang: "Re: "apple distribute-list in/out "command"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:21:52 GMT-3