Re: dlsw: ddr dialer-list best practice

From: Yves Fauser (Yves@xxxxxxxxx)
Date: Tue Aug 07 2001 - 06:27:14 GMT-3

• Next message: Albert Lu: "ISDN Problems"
• Previous message: Kevin Ipzebra: "Looking for candidate who take Lab in Oct"
• Maybe in reply to: Daniel C. Young: "dlsw: ddr dialer-list best practice"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Daniel,

RFC1795 states:
"If TCP connections cv values agree and the number of connections is one,
the DLSw withe the higher IP address must tear down the TCP connections on
its local port 2065"

Cisco has implemented this, thus if you use your first dialer-list /
priority list "one way" sollution, be sure to know wich side will tear down
the connection. If you don't want to think about directions, and wich side
will tear down his connection, take your second sollution.

Bye, Yves

"Daniel C. Young" wrote:

> Group,
>
> When defining interesting traffic only for DLSw over DDR, which is best?
>
> dialer-list 1 protocol ip list 100
> access-list 101 deny [routing-protocol] any any
> access-list 101 permit tcp any any eq 2065
>
> OR
>
> dialer-list 1 protocol ip list 100
> access-list 101 deny [routing-protocol] any any
> access-list 101 permit tcp any any eq 2065
> access-list 101 permit tcp any eq 2065 any
>
> If you are prioritizing, then perhaps:
>
> dialer-list 1 protocol ip list 100
> access-list 101 deny [routing-protocol] any any
> access-list 101 permit tcp any any eq 2065
> access-list 101 permit tcp any any eq 1981
> access-list 101 permit tcp any any eq 1982
> access-list 101 permit tcp any any eq 1983
>
> OR
>
> dialer-list 1 protocol ip list 100
> access-list 101 deny [routing-protocol] any any
> access-list 101 permit tcp any any eq 2065
> access-list 101 permit tcp any eq 2065 any
> access-list 101 permit tcp any any eq 1981
> access-list 101 permit tcp any eq 1981 any
> access-list 101 permit tcp any any eq 1982
> access-list 101 permit tcp any eq 1982 any
> access-list 101 permit tcp any any eq 1983
> access-list 101 permit tcp any eq 1983 any
>
> I am inclined to say the former, since all that you need is one side to
> bring up the traffic on the local router. In other words, if traffic
> matching "access-list 101 permit tcp any eq 2065 any" passes through the
> interface, then you already have the remote router calling in.
>
> Is this reasoning and conclusion correct?
>
> Daniel C. Young
> Sr. Network Engineer
> CCNP (ATM, Security & Voice Specialist),
> CCDP, CCSE, MCSE+I
>
> SBC Internet Data Center
> (949) 221-1928 Work
> (714) 350-8945 Cell
> young@pobox.com
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Albert Lu: "ISDN Problems"
• Previous message: Kevin Ipzebra: "Looking for candidate who take Lab in Oct"
• Maybe in reply to: Daniel C. Young: "dlsw: ddr dialer-list best practice"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:46 GMT-3