From: Tony Schaffran (groupstudy@cconlinelabs.com)
Date: Wed Jan 26 2005 - 10:39:47 GMT-3
Thank you.
That is exactly how I understood it as well.
I was needing a sanity check because I came across a situation that tried to
say different.
Tony Schaffran
Network Analyst
CCIE #11071
CCNP, CCNA, CCDA,
NNCDS, NNCSS, CNE, MCSE
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals.
-----Original Message-----
From: gladston@br.ibm.com [mailto:gladston@br.ibm.com]
Sent: Wednesday, January 26, 2005 4:31 AM
To: groupstudy@cconlinelabs.com
Cc: ccielab@groupstudy.com
Subject: RE: Policy based routing
Sorry, that was what I understood, just was not sure.
My reading is that there is no difference if you are connected to the
console or through TTY.
For example, you are on hostA and telnet to RouterB; when performing ping,
your ping is originated on RouterB.
But I remember a discussion on GroupStudy that stated something about this,
so I went to test it. The result confirms that from console or telnet, ip
local policy acts:
The first trace is from console; the second is from telnet:
r3#trace 172.16.36.6
Type escape sequence to abort.
Tracing the route to 172.16.36.6
1 172.16.39.9 4 msec 4 msec 0 msec
2 172.16.39.3 4 msec 4 msec 4 msec
3 172.16.36.6 4 msec * 8 msec
Terminal_Ser-R9>1
[Resuming connection 1 to r1 ... ]
r1#telnet 172.16.123.3
Trying 172.16.123.3 ... Open
User Access Verification
Password:
r3>trace 172.16.36.6
Type escape sequence to abort.
Tracing the route to 172.16.36.6
1 172.16.39.9 4 msec 4 msec 0 msec
2 172.16.39.3 8 msec 4 msec 4 msec
3 172.16.36.6 8 msec * 12 msec
The commands on R3 are:
access-list 180 permit udp any host 172.16.36.6
!
ip local policy route-map Policy
!
route-map Policy
match ip ad 180
set ip next-hop 172.16.39.9
I matched UDP, as I wanted to test it with traceroute; just for ping, as
your question, the access-list would be just icmp...
Hope was useful.
"Tony Schaffran" <groupstudy@cconlinelabs.com>
24/01/2005 22:07 Please respond to
groupstudy
ToAlaerte Gladston Vidali/Brazil/IBM@IBMBR, <ccielab@groupstudy.com>
cc
SubjectRE: Policy based routing
How would you like it rephrased?
Let me try it this way.
Whether you are telnetted to the router or connected directly to a console
port, if you initiate a ping, is the ping originating from that router?
Will that ping be manipulated according to the global 'ip local policy' or
the outgoing interface 'ip policy'?
Tony Schaffran
Network Analyst
CCIE #11071
CCNP, CCNA, CCDA,
NNCDS, NNCSS, CNE, MCSE
www.cconlinelabs.com
Your #1 choice for online Cisco rack rentals.
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
gladston@br.ibm.com
Sent: Monday, January 24, 2005 11:05 AM
To: ccielab@groupstudy.com
Subject: Re: Policy based routing
Would you rephrase the question?
This archive was generated by hypermail 2.1.4 : Wed Feb 02 2005 - 22:10:25 GMT-3