Dynamic ACL with IP SLA Monitor

From: John Edom (jedom123@gmail.com)
Date: Fri Dec 19 2008 - 05:32:57 ARST

• Next message: Marko Milivojevic: "Re: OT: All I want..."
• Previous message: John Edom: "Re: ntp peer command"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

I connected three routers like R1---------------R2--------------------R3
and configure dynamic acl on R2 so that if R3 want to telnet R1, it has to
authenticate first with R2. Now after authentication from R3 to R2, i
configured ip sla monitor for tcp 23 on R3 and ip sla monitor responder on
R1. This configuration start resetting timeout counter of dynamic acl every
10 second. I experience if i remove "ip sla monitor responder " command from
R1, timeout counter keep going down and not reset. even sla configuration on
R3 is enabled and it should keep sending tcp packets and counter should keep
resetting.

I am thinking may be sla with type tcpconnect must have responder on
otherside before sending traffic means it check for responder before sending
packet. Please explain me the reason if i am wrong.

Regards

Blogs and organic groups at http://www.ccie.net

• Next message: Marko Milivojevic: "Re: OT: All I want..."
• Previous message: John Edom: "Re: ntp peer command"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jan 01 2009 - 12:53:09 ARST