×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

DLSw Traffic as un-intersting

Unanswered Question
Sep 14th, 2003
User Badges:

Hi,


I want to make DLSw as unintersting traffic to trigger the ISDN dial.


IS below alone is enough or any additions required


access-list 101 deny tcp any eq 2065 any

access-list 101 deny tcp any eq any 2065

access-list 101 permit any any


Thanks,

Martin

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
liviu.gheorghe Wed, 09/17/2003 - 12:46
User Badges:
  • Bronze, 100 points or more

The correct access-list to make DLSw uninteresting traffic for DDR is:


access-list 101 deny tcp any gt 11000 any eq 2065

access-list 101 permit any any


This is because on the router configured for DDR, the DLSw traffic originates from a port higher than 11000 to port 2065 on the remote DLSw peer. The return traffic is from remote port 2065 to your port higher than 11000, which is not going to trigger your ISDN dial anyway, it's the problem of the remote router.

Cheers

m-villas Sat, 09/20/2003 - 20:32
User Badges:

I think


access-list 101 deny tcp any any eq 2065


also matches what ever the source port u said above, right?


Thanks,

Martin



liviu.gheorghe Sun, 09/21/2003 - 07:32
User Badges:
  • Bronze, 100 points or more

That is correct. The one I posted is more speciffic. Like I said, DLSw traffic originates from a port higher than 11000 to port 2065 on the remote DLSw peer. This way you can be sure that only DLSw traffic gets match by this entry of the access-list.

Cheers

Actions

This Discussion