From: ALL From_NJ (all.from.nj@gmail.com)
Date: Mon Feb 09 2009 - 12:01:15 ARST
Interesting question ... makes me try and think outside of the box. I am
not always good about thinking of alternative solutions ...
Can't use an access list and what if you can not create static routes ...
1) Do prefix lists count? These are not access-lists ...
2) Can you create a summary route and then filter that route from being
advertised? The summary route would create the route to null0.
3) Can you create a loopback and add that network to it? This would cause
all traffic to terminate locally ... (not the best answer to this question
IMO ...)
4) Can you tag the incoming routes and then create a route-map that drops
the traffic?
Hummm ... appreciate anyone's thought on this as I need to work on my
'alternative' solution thinking ... ;-)
HTH,
Andrew Lee Lissitz
On Mon, Feb 9, 2009 at 6:55 AM, Braychuck Vitaliy <
Vitaliy.Braychuck@incom.ua> wrote:
> Just create a route for that network pointed to the null.
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
> ccie preparation
> Sent: Monday, February 09, 2009 1:50 PM
> To: Cisco certification
> Subject: No access-list
>
> Folks,
> Is it possible to block attack coming from a specific
> network without using an access-list?
>
> Thanks,
> ccie prep
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Andrew Lee Lissitz all.from.nj@gmail.comBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:10 ARST