From: gladston@br.ibm.com
Date: Sat May 07 2005 - 11:38:17 GMT-3
Would you replicate this configuration to check if it is a bug?
DE marking is just working for local generated traffic.
Traffic passing through the router R3, as Telnet, does not match.
Telnet matches only if I disable cache on R2 interface connected to R3:
R5-----ser0/0_R2_ser0/1-----R3
There is a telnet session originated on R3 destinated to R5. R2 is 2600, 12.2T.
CEF is used.
Rack2R2#sh access-list 144
Extended IP access list 144
10 permit tcp any any eq telnet
20 deny ospf any any (22 matches)
30 permit tcp any eq telnet any
40 permit ip any any (14 matches)
Rack2R2#
Rack2R2#sh run | i de-list
frame-relay de-list 5 protocol ip list 144
Rack2R2#
Rack2R2#sh run int ser 0/0
Building configuration...
Current configuration : 451 bytes
!
interface Serial0/0
ip address 142.20.125.2 255.255.255.224
ip pim sparse-dense-mode
encapsulation frame-relay
ip ospf authentication-key cisco
ip ospf priority 0
ipv6 address 2001:125::2/64
custom-queue-list 1
frame-relay de-group 5 205
frame-relay map ipv6 2001:125::1 205
frame-relay map ipv6 2001:125::5 205 broadcast
frame-relay map ip 142.20.125.1 205
frame-relay map ip 142.20.125.5 205 broadcast
no frame-relay inverse-arp
end
Rack2R2#
Disabling cache:
Rack2R2#c
Enter configuration commands, one per line. End with CNTL/Z.
Rack2R2(config)#int ser 0/1
Rack2R2(config-if)#no ip rou
Rack2R2(config-if)#no ip route-c
Rack2R2(config-if)#
*Mar 1 02:53:37.717: IP: s=142.20.23.3 (Serial0/1), d=142.20.5.1 (Serial0/0), g=142
.20.125.5, len 42, forward
*Mar 1 02:53:37.717: TCP src=11012, dst=23, seq=3134602836, ack=1187870240, win
=3947 ACK PSH
*Mar 1 02:53:37.885: IP: s=142.20.23.3 (Serial0/1), d=142.20.5.1 (Serial0/0), g=142
.20.125.5, len 42, forward
*Mar 1 02:53:37.889: TCP src=11012, dst=23, seq=3134602838, ack=1187870250, win
=3937 ACK PSH
*Mar 1 02:53:38.050: IP: s=142.20.23.3 (Serial0/1), d=142.20.5.1 (Serial0/0), g=142
.20.125.5, len 42, forward
*Mar 1 02:53:38.050: TCP src=11012, dst=23, seq=3134602840, ack=1187870260, win
=3927 ACK PSH
Rack2R2(config-if)#
*Mar 1 02:53:38.270: IP: s=142.20.23.3 (Serial0/1), d=142.20.5.1 (Serial0/0), g=142
.20.125.5, len 40, forward
*Mar 1 02:53:38.270: TCP src=11012, dst=23, seq=3134602842, ack=1187870270, win
=3917 ACK
Rack2R2(config-if)#do no deb all
All possible debugging has been turned off
Rack2R2(config-if)#do sh access-list 144
Extended IP access list 144
10 permit tcp any any eq telnet (4 matches)
20 deny ospf any any (28 matches)
30 permit tcp any eq telnet any
40 permit ip any any (37 matches)
Rack2R2(config-if)#
This archive was generated by hypermail 2.1.4 : Fri Jun 03 2005 - 10:11:57 GMT-3