Can anyone tell me if there is a way to tell what traffic uses the default route?
I need this information because I am in the middle of a migration project. I need to remove the default route at the end of the project because of security concerns, however I want to be able to see if I am missing any routes by identifying what traffic is using the default route!
You can combine the usage of ip cache flow and show ip route for this issue, and any Network not in table uses the default route for sure, but the point is if it is a security concerns then it should be done in a reverse way, and thus you should only have routes for the destinations granted access by your security policy.
Static routes are special routes that the Technician manually enters into the router configuration. You could build an entire network based on static routes. The problem with doing this is that when (not if!) a network failure occurs, the static route will not change without you performing the change.
Default route is one that is used when no matching routing table entry is found. It appears in the routing table as a route to network 0.0.0.0 and you know it is set when the output of "sho ip route" contains an entry similar to the following entry at the top of the routing table:
Gateway of last resort is 192.168.4.1 to network 0.0.0.0
Any packet whose destination address is not matched by any specific routing table entry will take the path to the gateway of last resort. The gateway of last resort is a router that has more complete routing information and can hopefully forward the packet to its destination. If there is no default route and the packets destination address is not found in the routing table, then the packet is dropped and an ICMP Destination or Network Unreachable is returned to the source IP address.
INFO:show ip route command will be helpful to understand the Traffic Pattern that uses your default Route.
Based on your Network Requirement & above Definition you could proceed further.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...