RE: Advanced Frame-Relay Features

From: Scott Morris (swm@emanon.com)
Date: Thu Jun 08 2006 - 08:40:48 ART

• Next message: Guyler, Rik: "RE: NetFlow Analyser"
• Previous message: Richard Dumoulin: "Traceroute"
• Maybe in reply to: ELDHO PAUL: "Advanced Frame-Relay Features"
• Next in thread: Darby Weaver: "RE: Advanced Frame-Relay Features"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

While a very interesting configuration and all, IMHO it's overkill. I'm
all for solving things using simple methods, but I'd hazard a guess that
we're missing something from the "lab" scenario below.

Frame-relay end-to-end keepalives are a much easier way of having the
devices poll each other over the PVC every 'x' seconds.

There's NOTHING in any of the frame-relay documentation set referring to MD5
though which certainly adds to the confusion going around. I like the ip
sla solution that you have, but the command wasn't introduced until
12.3(14)T, so the chances of it being a tested topic in the lab are REALLY
low (considering 12.4 isn't the main IOS deployed yet).

I'd lean more towards a routing protocol authentication, but we just aren't
seeing those details in the scenario snippet there.

Just my thoughts!

 
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713, JNCIE
#153, CISSP, et al.
CCSI/JNCI
IPExpert CCIE Program Manager
IPExpert Sr. Technical Instructor
smorris@ipexpert.com
http://www.ipexpert.com
 
 

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Godswill Oletu
Sent: Wednesday, June 07, 2006 8:33 PM
To: ELDHO PAUL; ccielab@groupstudy.com
Subject: Re: Advanced Frame-Relay Features

hmmmmmm....

The only thing that will come close is....

IP SLA or RTR on R6 & R8, poll the other router's ip address every 15
seconds, and then use MD5 authentication for the IP SLA monitor control
message:

Something like....

!
ip sla monitor key-chain SLA
ip sla monitor 1
 type echo protocol ipIcmpEcho 1.1.1.2
 frequency 15
!
ip sla monitor schedule 1 start-time now life forever !
key chain SLA
 key 1
  key-string CISCO
!
!

HTH
Godswill Oletu

----- Original Message -----
From: "ELDHO PAUL" <cciein2006@gmail.com>
To: <ccielab@groupstudy.com>
Sent: Wednesday, June 07, 2006 2:01 PM
Subject: Advanced Frame-Relay Features

> Hi,
>
> While doing a CCIE scinario on frame-relay configuration I came across a
> question which says,
> **
> *"Enable the R6-R8 frame connection to operate under the following
> conditions:
>
> - Support for 128-bit MD5 authentication.
>
> - R6 and R8 are to poll each other every 15 seconds to ascertain the other
> side's ability to transmit into the frame cloud."*
> **
> Can anyone advice me how to do it.
>
> Regards,
> Eldho.
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

• Next message: Guyler, Rik: "RE: NetFlow Analyser"
• Previous message: Richard Dumoulin: "Traceroute"
• Maybe in reply to: ELDHO PAUL: "Advanced Frame-Relay Features"
• Next in thread: Darby Weaver: "RE: Advanced Frame-Relay Features"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:32 ART