IP VERIFY UNICAST REVERSE PATH

From: mani poopal (mani_ccie@yahoo.com)
Date: Fri Mar 25 2005 - 04:38:05 GMT-3

• Next message: Ivan Ostre¹: "RE: CCIE Company registration"
• Previous message: simon hart: "RE: OT - Juniper certification"
• Next in thread: ccie2be: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: ccie2be: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Church, Chuck: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Sundar Palaniappan: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: jenseike: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: mani poopal: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Edwards, Andrew M: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Philippe Couture: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Brian McGahan: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: mani poopal: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Patrick Aland: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Dillon Yang: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: istong@stong.org: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Guys,
 
What is the main purpose of access-list at the end of the ip verify unicast reverese-path(To drop packets without verifiable source address )command. If I want to log denied packets is oprtion (1.) or option (2.) is right. This access-list only for reverse path command and not for access-group. So what is the correct sequense of checking this access-list by the rpf router.
 
 
 (1.)
int eth0/1/1
 ip address 192.168.200.1 255.255.255.0
 ip verify unicast reverse-path 197
access-list 197 deny ip any any
 
(2.)int eth0/1/1
 ip address 192.168.200.1 255.255.255.0
 ip verify unicast reverse-path 197
access-list 197 permit ip any any
 
 
 

B.ENG,A+,CCNA,CCNP,CCNP-VOICE, CSS1,CNA,MCSE
(416)431 9929
MANI_CCIE@YAHOO.COM
                
---------------------------------
Do you Yahoo!?
 Yahoo! Small Business - Try our new resources site!

• Next message: Ivan Ostre¹: "RE: CCIE Company registration"
• Previous message: simon hart: "RE: OT - Juniper certification"
• Next in thread: ccie2be: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: ccie2be: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Church, Chuck: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Sundar Palaniappan: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: jenseike: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: mani poopal: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Edwards, Andrew M: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Philippe Couture: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Brian McGahan: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: mani poopal: "RE: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Patrick Aland: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Dillon Yang: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: istong@stong.org: "Re: IP VERIFY UNICAST REVERSE PATH"
• Maybe reply: Jongsoo.Kim@Intelsat.com: "RE: IP VERIFY UNICAST REVERSE PATH"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Apr 03 2005 - 17:56:51 GMT-3