Permitting traceroute through a acl

From: Robert DeVito (robertdevito@xxxxxxxxxxx)
Date: Sat Dec 30 2000 - 21:09:10 GMT-3

• Next message: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Previous message: rajendra bendre: "LAB SWAP"
• Next in thread: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Maybe reply: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Maybe reply: zheng jiang gu: "Re: Permitting traceroute through a acl"
• Maybe reply: Robert DeVito: "Re: Permitting traceroute through a acl"
• Maybe reply: zheng jiang gu: "Re: Permitting traceroute through a acl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   e0 e0 s0 s0
R3----------------R2------/-------r1

R3 e0=192.168.2.2/24
r1 s0= 192.168.1.5/30

I have a inbound access-list on R2 ethernet port. I want R3 to be able to
tracerout to r1. I understand that a cisco router will start with udp port
33434 when it does a tracerout. This is how I was able to do it:

acc 101 permit udp host 192.168.2.2 gt 33433 fhost 192.168.1.5 gt 33343

It seems to work just fine, I just want to make sure this is what you guys
(and gals) would do if you came accross this in the lab.

Happy New Years!
Robert DeVito

• Next message: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Previous message: rajendra bendre: "LAB SWAP"
• Next in thread: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Maybe reply: Ronnie Royston: "RE: Permitting traceroute through a acl"
• Maybe reply: zheng jiang gu: "Re: Permitting traceroute through a acl"
• Maybe reply: Robert DeVito: "Re: Permitting traceroute through a acl"
• Maybe reply: zheng jiang gu: "Re: Permitting traceroute through a acl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:26:13 GMT-3