Re: IPX DDR Q'

From: emonk@xxxxxxx
Date: Tue May 22 2001 - 17:53:07 GMT-3

• Next message: Joe Shmoe: "Lab swap June 1/2 in RTP for September RTP"
• Previous message: Joe Shmoe: "In DLSW, Purpose of dest-mac or dmac-output-list"
• Maybe in reply to: Virnoche, Phil: "IPX DDR Q'"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Philip,

This line of the access-list. What do you think it does?

access-list 901 permit 0

It only permits protocol 0 at the end. What protocols
ever get permitted besides 0? Something has to go
through or it will never dial. Remember the implicit
deny filters everything else out at the end. It should
be like this at the end to allow traffic through.
Something should be interesting traffic or it will never
work.

access-list 901 permit any any

Lesson learned here is that Cisco Examples are full of
errors. Don't trust them. Know what everything does and
then you won't get burned by it.

Edward Monk
> What is it not doing that you expected it to do?
>
> ----- Original Message -----
> From: Virnoche, Phil <phil.virnoche@attws.com>
> To: <ccielab@groupstudy.com>
> Sent: Tuesday, May 22, 2001 10:10 AM
> Subject: IPX DDR Q'
>
>
> > Gang-
> > I had my IPX dialer interface working perfectly until I put the more
> > restrictive access-list on....... if I remove it, it works..... This list
> > was cut and pasted right out of the "Designing DDR networks" on he
> CD......
> >
> > Any ideas why it is not working? Deb dialer doesn't even generate ant
> > messages.....
> >
> >
> > R2:
> > interface BRI0/0
> > no ip address
> > encapsulation ppp
> > dialer map ipx 29.0001.0001.0001 name r1 broadcast 8619959
> > dialer-group 1
> > ipx network 29
> > no ipx route-cache
> > ipx watchdog-spoof
> > ipx spx-spoof
> > ipx spx-idle-time 5
> > isdn switch-type basic-5ess
> > ppp authentication chap
> >
> >
> > access-list 901 deny 0 any sap
> > access-list 901 deny 0 any rip
> > access-list 901 deny 0 any 457
> > access-list 901 deny 0 any all any sap
> > access-list 901 deny 0 any all any rip
> > access-list 901 deny 0 any all any 457
> > access-list 901 permit 0
> > dialer-list 1 protocol ipx list 901
> >
> > R1:
> > interface BRI1/0
> > no ip address
> > encapsulation ppp
> > dialer map ipx 29.0002.0002.0002 name r2 broadcast 8619962
> > dialer-group 1
> > ipx network 29
> > no ipx route-cache
> > ipx watchdog-spoof
> > ipx spx-spoof
> > ipx spx-idle-time 5
> > isdn switch-type basic-5ess
> > ppp authentication chap
> >
> > access-list 901 deny 0 any sap
> > access-list 901 deny 0 any rip
> > access-list 901 deny 0 any 457
> > access-list 901 deny 0 any all any sap
> > access-list 901 deny 0 any all any rip
> > access-list 901 deny 0 any all any 457
> > access-list 901 permit 0
> > dialer-list 1 protocol ipx list 901
> >
> >
> > Philip G. Virnoche
> > Sr. Network Engineer - AT&T Wireless
> > phone: 425.580.5239
> > cell: 206.601.3134
> > "HAM AND EGGS - A day's work for a chicken; A lifetime commitment for a
> > pig."
> > **Please read:http://www.groupstudy.com/list/posting.html
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Joe Shmoe: "Lab swap June 1/2 in RTP for September RTP"
• Previous message: Joe Shmoe: "In DLSW, Purpose of dest-mac or dmac-output-list"
• Maybe in reply to: Virnoche, Phil: "IPX DDR Q'"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:30:49 GMT-3