On which interface to apply the "no ip unreachables" command?

From: YourPal (dearprudence28@gmail.com)
Date: Mon Mar 24 2008 - 01:27:56 ART

• Next message: nagendra kumar: "Re: On which interface to apply the "no ip unreachables""
• Previous message: theKonqueror: "Re: Finally Passed!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Group,

I thought of this scenario but have no access to my lab routers to test it
at this moment.

Say, R1 has the following config:

!
int fa0/0
 ip add 172.16.1.1 255.255.255.0
 ip access-gr 100 in
!
int f0/1
 ip add 172.16.2.1 255.255.255.0
!
access-list 100 deny icmp any any
access-list 100 permit ip any any
!

Say, R2 pings R1's IP address 172.16.1.1 and the packet enters R1's Fa0/0
interface. And say R1's route to R2 via Fa0/1 interface.

Understand that R1 will send an ICMP Type 3 Unreachable (Administratively
Prohibited code) message back to R2 because its ACL denies the packet. In my
case, I want R1 not to send unreachable messages back to the source. Which
interface should I apply the "no ip unreachables" command? Fa0/0 or Fa0/1?

Thank you.

BR,
Emil

• Next message: nagendra kumar: "Re: On which interface to apply the "no ip unreachables""
• Previous message: theKonqueror: "Re: Finally Passed!"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Apr 01 2008 - 07:53:54 ART