From: Mohamed Saeed (mohamed_saeed2@rayacorp.com)
Date: Wed Dec 27 2006 - 05:11:30 ART
Hi Scott,
Let me state what I believe:
If you are on a router and initiated a telnet session to another router,
then telnet port number is in the destination.
If the local router is responding to a telnet session from another
router, the telnet port number is in the source.
Am I right?
Kind Regards
-----Original Message-----
From: Scott Morris [mailto:swm@emanon.com]
Sent: Wednesday, December 27, 2006 4:34 AM
To: Mohamed Saeed; ccielab@groupstudy.com
Subject: RE: MQC - Traffic Generated by the router?
That will all depend on the direction you are applying your
sevice-policy as
well! :) remember, it's from the router's perspective, so what will
the
packet look like?
You could also take the easy way and use "match protocol telnet" which
will
do source or destination ports. (If memory serves, but I've been light
on
the egg-nog this year, so should be good!)
Scott Morris, CCIE4 (R&S/ISP-Dial/Security/Service Provider) #4713,
JNCIE
#153, CISSP, et al.
CCSI/JNCI-M/JNCI-J
IPExpert VP - Curriculum Development
IPExpert Sr. Technical Instructor
smorris@ipexpert.com
http://www.ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Mohamed Saeed
Sent: Tuesday, December 26, 2006 5:50 PM
To: ccielab@groupstudy.com
Subject: MQC - Traffic Generated by the router?
Hi All,
Will the following affects traffic locally generated by the router that
matches the class TEST?
Class-map TEST
Match access-group 101
Policy-map POLICY
Class TEST
Set dscp 10
Int f0/0
Service-policy output POLICY
A related question, if I need to match the telnet traffic locally
generated
by the router, should I use telnet port in the source or the destination
of
the access-list statement? What is the rule here?
access-list 101 permit tcp any any eq telnet
OR
access-list 101 permit tcp any eq telnet any
Kind Regards
This archive was generated by hypermail 2.1.4 : Tue Jan 02 2007 - 07:50:39 ART