Re: IEWB Lab 8 Task7.2

From: shiran guez (shiranp3@gmail.com)
Date: Tue Oct 30 2007 - 15:31:43 ART

• Next message: Gary Duncanson: "Re: Getting a por to be in forwarding state in 14 seconds ...."
• Previous message: Saul Arjona: "Re: IEWB Lab 8 Task7.2"
• Maybe in reply to: shiran guez: "IEWB Lab 8 Task7.2"
• Next in thread: shiran guez: "Re: IEWB Lab 8 Task7.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

they specified sensitive audio and with a side remark that it use udp with
destination port 7070.

the second question I had was only if someone know or have a Documentation
link about the match protocol rtp if it is basing its inspection only on the
port range or it check the packet to be a valid rtp.

if it is only on the port range then the solution in the solution guide was
the better one, but if not then I think my solution was more accurate.

On 10/30/07, Gregory Gombas <ggombas@gmail.com> wrote:
>
> Since they specified UDP port 7070 I would stick with the ACL only.
>
> Not to split hairs here, but is there a chance the audio could be sent
> via some other protocol besides RTP?
>
> On 10/30/07, shiran guez <shiranp3@gmail.com> wrote:
> > on that task it was specified to handle sensative audio traffic to port
> > 7070:
> >
> > My question is regarding the classfication part
> >
> > My solution:
> >
> > class-map match-all AUDIO
> > match protocol rtp audio
> > match access-group 170
> > !
> > access-list 170 permit udp any any eq 7070
> > !
> >
> > The Solution Guide was:
> >
> > class-map match-all AUDIO
> > match protocol rtp audio
> > !
> > ip access-list ext AUDIO
> > permit udp any any eq 7070
> >
> > what is the better solution for that case, I am sure that if I had that
> > question in my lab I would ask the proctor do I need to match audio rtp
> or
> > can I match all udp to port 7070 and it would be ok?
> >
> > the other question is dose the protocol check for rtp is based on just a
> > range of ports or it is also doing deep inspection.
> >
> >
> >
> > --
> > Shiran Guez
> > MCSE CCNP NCE1
> > http://cciep3.blogspot.com
> > http://www.linkedin.com/in/cciep3
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
>

-- 
Shiran Guez
MCSE CCNP NCE1
http://cciep3.blogspot.com
http://www.linkedin.com/in/cciep3

• Next message: Gary Duncanson: "Re: Getting a por to be in forwarding state in 14 seconds ...."
• Previous message: Saul Arjona: "Re: IEWB Lab 8 Task7.2"
• Maybe in reply to: shiran guez: "IEWB Lab 8 Task7.2"
• Next in thread: shiran guez: "Re: IEWB Lab 8 Task7.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Nov 16 2007 - 13:11:19 ART