Traceroute and RACL

From: mahmoud genidy (ccie.mahmoud@gmail.com)
Date: Fri Feb 27 2009 - 22:11:43 ARST

• Next message: David Murray (AU): "FW: Private VLANs..contd"
• Previous message: David Murray (AU): "RE: Private VLANs..contd"
• Next in thread: Edouard Zorrilla: "Re: Traceroute and RACL"
• Maybe reply: Edouard Zorrilla: "Re: Traceroute and RACL"
• Maybe reply: mahmoud genidy: "Re: Traceroute and RACL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi GS,

Regarding the TRACEROUTE traffic and how it is related to Reflexive ACL.

According to Cisco implementation the TRACEROUTE traffic goes out as UDP and
return as ICMP (Port unreachable and Time-Exceeded). Am I correct?!

BUT I found this command in the DOC CD:

{ Router(config)# *access-list 100 permit icmp any any traceroute* }

Then I found that TRACEROUTE is ICMP type 30. Now I'm confused how to match
it in the OUT and IN direction if I will use RACL!

Any hints?

Thanks
Mahmoud.

Blogs and organic groups at http://www.ccie.net

• Next message: David Murray (AU): "FW: Private VLANs..contd"
• Previous message: David Murray (AU): "RE: Private VLANs..contd"
• Next in thread: Edouard Zorrilla: "Re: Traceroute and RACL"
• Maybe reply: Edouard Zorrilla: "Re: Traceroute and RACL"
• Maybe reply: mahmoud genidy: "Re: Traceroute and RACL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:44:13 ARST