Re: QOS | Fragments

From: Darby Weaver (darbyweaver@yahoo.com)
Date: Mon May 21 2007 - 01:28:54 ART

• Next message: To Be CCIE: "OSPF Error"
• Previous message: Darby Weaver: "Re: Removing running-config"
• Maybe in reply to: Mohammed Khasawneh: "QOS | Fragments"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I'd just use the acl:

access-list 100 deny any host 10.10.10.10 fragment
access-list 100 p tcp any host 10.10.10.10 eq 80
access-list 100 p any any

int s0/0/0
ip access-group 100 in

Or something like that...

Hmm... the other one I'd need a minute to explain
properly without embarassing myself too much.

:)

--- Mohammed Khasawneh <mohammed.khasawneh@gmail.com>
wrote:

> Hi all
>
> I have two questions
>
>
> first is its possible deny all the fragments packets
> ( initial and non-initial
> fragments ) to a specific ( web server ) using ACL
> ?
>
> second what is the different between these two
> configuration :
>
>
>
> A.
> policy-map XYZ
> class class-default
> bandwidth 128
> shape average 512000
>
> B.
>
> policy-map ONE
> class class-default
> bandwidth 128
>
> policy-map TWO
> class class-default
> shape average 512000
> service-policy ONE
>
>
>
> Regards
>
> Khasawneh
>
>

• Next message: To Be CCIE: "OSPF Error"
• Previous message: Darby Weaver: "Re: Removing running-config"
• Maybe in reply to: Mohammed Khasawneh: "QOS | Fragments"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jun 01 2007 - 06:55:21 ART