[geeks] cisco router access lists
James
james at jdfogg.com
Mon Dec 16 11:57:09 CST 2002
"established" adds pseudo-statefullness to a tcp or udp stream.
OK, I'm going to start diggin in on what you've presented here so far.
btw, I hope this is a 3600 class router or better. The commands are
establishing extended ACLs and that requires real router horsepower since
once you jump into the e-acl world you leave ASICs and run all packets
through software/cpu. Also, the order in which you build e-acl's count
since you want to permit or deny a packet as quickly as possible for the
bulk of the traffic and make more curious traffic wait.
At 11:50 AM 12/16/2002 -0500, you wrote:
>James <james at jdfogg.com> wrote:
>
> > Kurt, I could decipher this for you, but before I commit brain cycles
> > to the task I would like to know if you have your answer yet and are
> > you willing/able to provide more info if I need it?
> >
>
>I'm working on it today, and still don't have an answer. I just
>stumbled across the 'established' keyword which I *think* will work, but
>I am not a router guy...
>
>Any help you can offer would be much appreciated. I can get you any
>more info you're looking for.
>
>Kurt
>
>--
>Kurt "I remember that I've got a solid base of worms and
>kurt at k-huhn.com ant eggs. I puke like a hero all night long."
> -- Tony Bourdain
>_______________________________________________
>GEEKS: http://www.sunhelp.org/mailman/listinfo/geeks
More information about the geeks
mailing list