From: Peter Ding (pding@cisco.com)
Date: Sun Dec 05 2004 - 15:02:28 GMT-3
If ICMP redirect is on, the ICMP protocol allows a router to redirect an
endstation to send packets for a particular destination to another router.
If the router to which an endstation has been redirected for a particular
destination fails, then the endstation's packets to that destination weren't
delivered. That defeats the purpose to use HSRP.
When traffic from inside to outside, or from outside to inside, the address
translation will be occurred on the NAT device. If the packets are
redirected, ip address could not be translated as expected.
It is recommended to disable the ICMP redirect when using NAT or HSRP. You
may find the scenairo to use it with NAT or HSRP, but use it with caution.
PD
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
ccie2be
Sent: Sunday, December 05, 2004 7:51 AM
To: Group Study
Subject: HSRP, NAT, & the "no ip redirect" command
Hi guys,
In the example found at this link:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122
t
/122t4/ftnthsrp.htm
the command, no ip redirect, is entered on the physical interfaces
configured for HSRP and NAT.
Is this actually REQUIRED? If so, why?
TIA, Tim
This archive was generated by hypermail 2.1.4 : Mon Jan 03 2005 - 10:31:24 GMT-3