12-11-2003 05:28 AM - edited 02-20-2020 09:23 PM
Is it possible that a shunning router will leak normally blocked inbound packets? Possibly when the acl numbers are changed on the inbound shunning interface? We're seeing a few packets get through that should be blocked by the pre-shun acl, and were blocked 100% before shunning was enabled. We've confirmed the pre and post shun are correctly in the active shunning acl.
If it can't happen, where should I be looking for the problem?
Considering also applying the pre-shun to opposite interface outbound for a workaround?
12-11-2003 08:37 AM
A related question is: what happens when the cpu hits 100%? Does that affect how the ACL's are handled?
12-11-2003 10:36 AM
Good point. Ours is a 3540 is does peak at 100% briefly now rather than the 50% is was peaking at before shunning.
Can anyone shed some light on these things?
12-15-2003 11:41 AM
Correction, router is 3640.
Anyone else, please?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: