Home page logo
/

nanog logo nanog mailing list archives

Re: Cisco filter question
From: Jack Bates <jbates () brightok net>
Date: Fri, 22 Aug 2003 16:37:42 -0500


matt () petach org wrote:

    ip address (access-lists): 199

                                  ^^^

Extended IP access list 181

                          ^^^



Did you mean to have a mismatch between the numbers?
Or is there some magic configuration detail that links
the two together that I haven't learned about yet?


They are comparitive lists. 181 lists all traffic leaving the router towards my networks while 199 is the list for the routemap that filters inbound icmp traffic of 92 bytes. 181 would be legitimate icmp traffic which is why it's lower than route-map nachi-worm which uses acl 199.

-Jack


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]