Dropping ip fragments using control plane from imran mohammed on 2010-10-03 (Ccielab archives 10/2010)

From: imran mohammed <imran4cisco_at_gmail.com>
Date: Sun, 3 Oct 2010 22:59:53 +0200

Hi All,

Which is correct

*configuration 1:*

ip access-list extended fragment
permit ip any any fragments
!
class-map match-all fragment
match access-group name fragment
!
policy-map CP
class fragment
drop
!
control-plane cef-exception

service-policy input CP

*configuration 2:*

ip access-list extended fragment
permit ip any any fragments
!
class-map match-all fragment
match access-group name fragment
!
policy-map CP
class fragment
drop
!
control-plane transit

service-policy input CP

I feel this should be control-plane host

Regards

imran

Blogs and organic groups at http://www.ccie.net
Received on Sun Oct 03 2010 - 22:59:53 ART

This archive was generated by hypermail 2.2.0 : Mon Nov 01 2010 - 06:42:05 ART