From: san (san.study@gmail.com)
Date: Sat Jun 18 2005 - 21:16:36 GMT-3
Some places i have seen DHCP filters like below....
server being 67, source port for request being 68.
cbos# set filter 0 on allow incoming eth0 0.0.0.0 0.0.0.0 0.0.0.0
0.0.0.0 protocol
udp srcport 68-68 destport 67-67
cbos# set filter 1 on allow outgoing eth0 1.2.3.4 255.255.255.255
0.0.0.0 0.0.0.0
protocol udp srcport 67-67 destport 68-68
I really dont understand the above commands except its trying to allow dhcp.
/SAN
On 6/17/05, ccie2be <ccie2be@nyc.rr.com> wrote:
> Hi guys,
>
> Let's say I have this config:
>
> class-map WWW
> match protocol http
>
>
> In terms of source or destination port, which is the above config equivalent
> to?
>
>
> access-list 100 permit tcp any eq www any <-- matches responses from a
> web server
>
> or
>
> access-list 100 permit tcp any any eq www <--- matches requests to a web
> server
>
>
> or does it depend on in which direction I apply the service-policy?
>
>
> While at first glance this might seem like a trivial issue, if the MQC
> syntax is only equivalent to one of those acl statements, we better know
> which one if we want to use the MQC construct and still make all our points
> on the lab.
>
> Any thoughts or comments?
>
> TIA, Tim
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Wed Jul 06 2005 - 14:43:41 GMT-3