From: Gregory Gombas (ggombas@gmail.com)
Date: Tue Oct 30 2007 - 12:52:43 ART
Since they specified UDP port 7070 I would stick with the ACL only.
Not to split hairs here, but is there a chance the audio could be sent
via some other protocol besides RTP?
On 10/30/07, shiran guez <shiranp3@gmail.com> wrote:
> on that task it was specified to handle sensative audio traffic to port
> 7070:
>
> My question is regarding the classfication part
>
> My solution:
>
> class-map match-all AUDIO
> match protocol rtp audio
> match access-group 170
> !
> access-list 170 permit udp any any eq 7070
> !
>
> The Solution Guide was:
>
> class-map match-all AUDIO
> match protocol rtp audio
> !
> ip access-list ext AUDIO
> permit udp any any eq 7070
>
> what is the better solution for that case, I am sure that if I had that
> question in my lab I would ask the proctor do I need to match audio rtp or
> can I match all udp to port 7070 and it would be ok?
>
> the other question is dose the protocol check for rtp is based on just a
> range of ports or it is also doing deep inspection.
>
>
>
> --
> Shiran Guez
> MCSE CCNP NCE1
> http://cciep3.blogspot.com
> http://www.linkedin.com/in/cciep3
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Nov 16 2007 - 13:11:19 ART