*R1:*
interface Serial1/0
ip address 1.1.1.1 255.255.255.0
ip access-group 104 in
encapsulation frame-relay
serial restart-delay 0
no dce-terminal-timing-enable
frame-relay map ip 1.1.1.2 102 broadcast
R1#sh access-lists 104
Extended IP access list 104
10 permit icmp any any echo
-------------------------------------------------------------------------------
*R2:*
R2#sh run int s1/0
Building configuration...
Current configuration : 209 bytes
!
interface Serial1/0
ip address 1.1.1.2 255.255.255.0
ip access-group 109 in
encapsulation frame-relay
serial restart-delay 0
no dce-terminal-timing-enable
frame-relay map ip 1.1.1.1 201 broadcast
end
R2#sh access-lists 109
Extended IP access list 109
10 permit icmp any any echo-reply
--------------------------------------------------------------------------------
After Ping From R2 to R1:
R2#ping 1.1.1.1 *repeat 1*
Type escape sequence to abort.
Sending 1, 100-byte ICMP Echos to 1.1.1.1, timeout is 2 seconds:
!
Success rate is 100 percent (1/1), round-trip min/avg/max = 88/88/88 ms
R2#
R2#sh access-lists 109
Extended IP access list 109
10 permit icmp any any echo-reply *(3 matches)*
R2#
------------------------------------------------------------------------------------------
R1#
*Mar 2 17:51:06.857: IP: tableid=0, s=1.1.1.2 (Serial1/0), d=1.1.1.1
(Serial1/0), routed via RIB
*Mar 2 17:51:06.861: IP: s=1.1.1.2 (Serial1/0), d=1.1.1.1 (Serial1/0), len
100, rcvd 3
*Mar 2 17:51:06.865: ICMP type=8, code=0
*Mar 2 17:51:06.865: IP: tableid=0, s=1.1.1.1 (local), d=1.1.1.2
(Serial1/0), routed via FIB
*Mar 2 17:51:06.869: IP: s=1.1.1.1 (local), d=1.1.1.2 (Serial1/0), len 100,
sending
*Mar 2 17:51:06.873: ICMP type=0, code=0
R1#sh access-lists 104
Extended IP access list 104
10 permit icmp any any echo *(3 matches)*
R1#
--------------------------------------------------------------------------------------------
On Wed, Jul 8, 2009 at 9:41 AM, Sadiq Yakasai <sadiqtanko_at_gmail.com> wrote:
> Can we see some config and logs for a test run please?
>
>
> On Wed, Jul 8, 2009 at 2:28 PM, S Malik <ccie.09_at_gmail.com> wrote:
>
>> Same thing, it does not matter if I match IP or icmp echo.
>>
>> Even on R1(which is sending ping requests to R2), if I match icmp any any
>> echo-reply then I get 3 matches for a single reply.
>>
>> If I do debug icmp, then I see rcvd 3 but I am not sure what this 3
>> means.
>>
>> As I mentioned that with option log, I get 1 match for single ping
>> request.
>>
>> On Tue, Jul 7, 2009 at 12:33 PM, Sadiq Yakasai <sadiqtanko_at_gmail.com>wrote:
>>
>>> Hi Malik,
>>>
>>> Try matching not |IP" but "icmp any any echo-request".
>>>
>>> You are seeing more than just your icmp traffic when you look at the IP
>>> count the way you do.
>>>
>>> HTH,
>>>
>>> Sadiq
>>>
>>> On Tue, Jul 7, 2009 at 5:18 PM, S Malik <ccie.09_at_gmail.com> wrote:
>>>
>>>> ALL,
>>>>
>>>> I want to log all the ping requests received on router R2 from R1. I
>>>> created
>>>> and extended ACL on R2 and match ip any any without log option.
>>>>
>>>> when I ping from R1 with repeat count of 1, then I see 3 match on R2
>>>> (sh
>>>> access-list). My question is why I see 3 matches?
>>>>
>>>> When I change ACL to permit ip any any log, then I see only 1 match why?
>>>>
>>>>
>>>> Blogs and organic groups at http://www.ccie.net
>>>>
>>>> _______________________________________________________________________
>>>> Subscription information may be found at:
>>>> http://www.groupstudy.com/list/CCIELab.html
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> CCIE #19963
>>>
>>
>>
>
>
> --
> CCIE #19963
Blogs and organic groups at http://www.ccie.net
Received on Wed Jul 08 2009 - 11:36:30 ART
This archive was generated by hypermail 2.2.0 : Sat Aug 01 2009 - 13:10:22 ART