Re: HSRP Security

From: Sadiq Yakasai (sadiqtanko@gmail.com)
Date: Wed Jul 23 2008 - 17:29:50 ART

• Next message: Muhammad Nasim: "Re: ASA vs Checkpoint"
• Previous message: Abbas Tyrewala: "Re: Recommendation for LAB Exams...."
• Maybe in reply to: Phillip Day: "HSRP Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Phil,

I dont see how you couldnt filter the HSRP packets using VACL or RACL on the
switches. Remember these attributes of HSRP packets:

Destination mcast address: 224.0.0.2
Transport Protocol: UDP
Port Numbers: Source 1985, Destination 1985

There should be enough information there for you to filter the packets I
think.

HTH
Sadiq
CCIE #19963

• Next message: Muhammad Nasim: "Re: ASA vs Checkpoint"
• Previous message: Abbas Tyrewala: "Re: Recommendation for LAB Exams...."
• Maybe in reply to: Phillip Day: "HSRP Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Aug 04 2008 - 06:11:56 ART