From: Scott Morris (swm@emanon.com)
Date: Sat Sep 20 2003 - 11:53:49 GMT-3
That's an awful good question. It would certainly stand to reason
that's true. But you'd have to ask your favorite Cisco IOS program
director about that!
Scott
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Ken.Farrington@barclayscapital.com
Sent: Saturday, September 20, 2003 10:45 AM
To: ccielab@groupstudy.com
Subject: RE: DRP IP Feature for the Lab
So if there is no ref in 12.3, ? What does that mean, it's no longer
to
be used?
Thx :)
-----Original Message-----
From: Scott Morris [mailto:swm@emanon.com]
Sent: 20 September 2003 15:41
To: Ken.Farrington@barclayscapital.com; ccielab@groupstudy.com
Subject: RE: DRP IP Feature for the Lab
That appears to be correct. Introduced in 12.0(3)T and continuing
through 12.2 releases only on the 2501/2501 and 4700M platforms. 12.3
has no reference to it at all. *shrug* Bummer I got rid of my 2500's!
Who woulda thought they would be useful still?!?! :)
Agent config seems simple enough. According to
http://www.cisco.com/en/US/products/hw/contnetw/ps813/products_installat
ion_guide_chapter09186a008007d1e5.html, which I assume you used judging
by your key chain.
An example of "fluff points" to test your ability to research the Doc
CD! But yes, you are correct in that the 'ip drp server' is all you
really need unless you are going to secure things with the ACL or
authentication key. Which, I like the text about on the web page, you
use the authentication key to "prevent DRP-based denial-of-service
attacks". And in the typical script-kiddy hacking world, who the heck
knows what DRP is anyway? :)
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713,
CISSP, JNCIS, et al. IPExpert CCIE Program Manager IPExpert Sr.
Technical Instructor swm@emanon.com/smorris@ipexpert.net
http://www.ipexpert.net
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Ken.Farrington@barclayscapital.com
Sent: Saturday, September 20, 2003 8:35 AM
To: ccielab@groupstudy.com
Subject: DRP IP Feature for the Lab
Hello,
I am just doing some research for DRP as I hear it could earn you a
couple of points in the lab.
The router "Server Agent" side of things seems simple enough (probably
just need to enable the first command).
ip drp server
ip drp access-group 1
!
access-list 1 permit 10.0.0.1
access-list 1 deny any
!
ip drp authentication key-chain violet
key chain violet
key 5
key-string carnation
exit
BUT ................................The Question is :-
Whilst doing the research, you find that the routers peer to the
DistributedDirectors and the only URL on the Cisco web site shows 4700s
and 2501s as the devices that run the DistributedDirector IOS s/w.
Surely this cannot be right, and the DistributedDirector software runs
on newer platforms?
TTFN,
Ken
________________________________________________________________
Ken Farrington
Global Networks, Barclays Capital, 5 The North Colonnade, Canary
Wharf, London, E14 4BB
* Tel : 020 7773 3550
* Mob : 07768-866655
* ken.farrington@barcap.com
------------------------------------------------------------------------
For more information about Barclays Capital, please
visit our web site at http://www.barcap.com.
Internet communications are not secure and therefore the Barclays
Group does not accept legal responsibility for the contents of this
message. Although the Barclays Group operates anti-virus programmes,
it does not accept responsibility for any damage whatsoever that is
caused by viruses being passed. Any views or opinions presented are
solely those of the author and do not necessarily represent those of the
Barclays Group. Replies to this email may be monitored by the Barclays
Group for operational or business reasons.
------------------------------------------------------------------------
***Get your CCIE and a FREE vacation: Shop.GroupStudy.com***
This archive was generated by hypermail 2.1.4 : Wed Oct 01 2003 - 07:24:32 GMT-3