From: Daniel C. Young (danyoung99@xxxxxxxxxxxx)
Date: Tue Aug 07 2001 - 03:01:08 GMT-3
Group,
When defining interesting traffic only for DLSw over DDR, which is best?
dialer-list 1 protocol ip list 100
access-list 101 deny [routing-protocol] any any
access-list 101 permit tcp any any eq 2065
OR
dialer-list 1 protocol ip list 100
access-list 101 deny [routing-protocol] any any
access-list 101 permit tcp any any eq 2065
access-list 101 permit tcp any eq 2065 any
If you are prioritizing, then perhaps:
dialer-list 1 protocol ip list 100
access-list 101 deny [routing-protocol] any any
access-list 101 permit tcp any any eq 2065
access-list 101 permit tcp any any eq 1981
access-list 101 permit tcp any any eq 1982
access-list 101 permit tcp any any eq 1983
OR
dialer-list 1 protocol ip list 100
access-list 101 deny [routing-protocol] any any
access-list 101 permit tcp any any eq 2065
access-list 101 permit tcp any eq 2065 any
access-list 101 permit tcp any any eq 1981
access-list 101 permit tcp any eq 1981 any
access-list 101 permit tcp any any eq 1982
access-list 101 permit tcp any eq 1982 any
access-list 101 permit tcp any any eq 1983
access-list 101 permit tcp any eq 1983 any
I am inclined to say the former, since all that you need is one side to
bring up the traffic on the local router. In other words, if traffic
matching "access-list 101 permit tcp any eq 2065 any" passes through the
interface, then you already have the remote router calling in.
Is this reasoning and conclusion correct?
Daniel C. Young
Sr. Network Engineer
CCNP (ATM, Security & Voice Specialist),
CCDP, CCSE, MCSE+I
SBC Internet Data Center
(949) 221-1928 Work
(714) 350-8945 Cell
young@pobox.com
**Please read:http://www.groupstudy.com/list/posting.html
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:46 GMT-3