Re: RE: OSPF Hello's

From: kevin gannon (kevin@gannons.net)
Date: Thu Nov 10 2005 - 18:41:59 GMT-3

• Next message: Wang Dehong-DWANG1: "RE: Testing refuse-message"
• Previous message: kevin gannon: "Re: Sparse-dense mode example on frame - AutoRP"
• Maybe in reply to: Scott Morris: "RE: OSPF Hello's"
• Next in thread: Arun Arumuganainar: "Re: RE: OSPF Hello's"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The proctors lock the door to the labs for this reason.

Regards
Kevin

On 11/10/05, jon <jon@storm.to> wrote:
> Scalablity of the black bag solution is possible, using wheeliebins at the
> distribution layer and dumptrucks at the core. It is also highly secure,
> basically being an extension of the bit-bucket concept...
>
> -----Original Message-----
> From: Scott Morris [mailto:swm@emanon.com]
> Sent: 10 November 2005 14:03
> To: 'Ralph'; duane.dewitt@siemens.com
> Cc: Jaycee.Cockburn@bcx.co.za; ccileigh@gmail.com; ccielab@groupstudy.com
> Subject: RE: RE: OSPF Hello's
>
>
> I'm not sure that's very scalable, or recommended for your lab exam. But
> you're right, it IS a solution! :)
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> Ralph
> Sent: Thursday, November 10, 2005 8:52 AM
> To: duane.dewitt@siemens.com
> Cc: Jaycee.Cockburn@bcx.co.za; ccileigh@gmail.com; ccielab@groupstudy.com
> Subject: Re: RE: OSPF Hello's
>
> If all attempts fail, you can finally power off the router, disconnect it
> from the network, put it a big bag, and hide it in an undisclosed location.
> This will serve as a punishment for messing with the bad guys! :)
>
> cheers
> Ralph
>
> -----Original Message-----
> From: "De Witt, Duane" <duane.dewitt@siemens.com>
> To: "Jaycee Cockburn - BCX SS" <Jaycee.Cockburn@bcx.co.za>, "Leigh Harrison"
> <ccileigh@gmail.com>
> Date: Thu, 10 Nov 2005 14:58:44 +0200
> Subject: RE: OSPF Hello's
>
> So we're back to one solution which is the access-list on SW2. Thanks for
> the clarification :)
>
> -----Original Message-----
> From: Jaycee Cockburn - BCX SS [mailto:Jaycee.Cockburn@bcx.co.za]
> Sent: 10 November 2005 01:48 PM
> To: De Witt, Duane; Leigh Harrison
> Cc: Cisco certification
> Subject: RE: OSPF Hello's
> Importance: High
>
> Hi All,
> Bad news, database-filter doesn't filter hello packets, only LSA's... You
> can test it quickly, enable it on an ethernet and check the neighbor
> relations go down and then up again...
>
> Sorry, but good thought process!
> Had me thinking too....
> Cheers
> JC
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of De
> Witt, Duane
> Sent: 10 November 2005 01:25 PM
> To: Leigh Harrison
> Cc: Cisco certification
> Subject: RE: OSPF Hello's
>
> Hi
>
> Thanks. I think that the database-filter would be better than setting
> non-broadcast, but the access-list is probably the best way. At least I know
> a few ways of doing this now :)
>
> -----Original Message-----
> From: Leigh Harrison [mailto:ccileigh@gmail.com]
> Sent: 10 November 2005 01:20 PM
> To: De Witt, Duane
> Cc: Cisco certification
> Subject: Re: OSPF Hello's
>
> Hey there Duane,
>
> There are 2 ways of doing this (actually, there are probably loads, but 2
> that I know of) on a switch.
>
> Use an access-list to stop the packets going through.
> Use "ip ospf database-filter all out"
>
> Have a crack at setting it to non-broadcast though - that /should/ do it.
>
> LH
>
> De Witt, Duane wrote:
>
> >Hi Group
> >
> >
> >
> >In IEWB V2 Lab4 5.13-15:
> >
> >
> >
> >Do not allow hosts in VLAN3 to intercept R3's OSPF hello packets and do
>
> >not use passive-interface.
> >
> >
> >
> >The suggested solution is an access-list on SW2 to deny OSPF on R3's
> >interface.
> >
> >
> >
> >Would another solution be to set the FE interface on R3 to
> >non-broadcast?
> >
> >
> >
> >Regards
> >
> >Duane
> >
> >
> >
> >____________________________________________
> >SIEMENS Siemens Business Services
> > Siemens Service Center
> >
> >126 14th Road
> >
> >Erand Gardens
> >
> >Midrand
> >
> >South Africa
> >
> >
> >
> >* +27 11 5452555
> >* +27 83 4452768
> >* +27 11 5415219
> >* duane.dewitt@siemens.com <mailto:duane.dewitt@siemens.com>
> >
> >_______________________________________________________________________
> >Subscription information may be found at:
> >http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.

• Next message: Wang Dehong-DWANG1: "RE: Testing refuse-message"
• Previous message: kevin gannon: "Re: Sparse-dense mode example on frame - AutoRP"
• Maybe in reply to: Scott Morris: "RE: OSPF Hello's"
• Next in thread: Arun Arumuganainar: "Re: RE: OSPF Hello's"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:06 GMT-3