Avatar
[ view entry ] ( 1368 views ) | print article
Consider only synchronized routes with no AS loops and a valid next hop, and then:
1.- Prefer highest weight (local router).
2.- Prefer highest local preference (global within AS).
3.- Prefer route originated by the local router (next hop: 0.0.0.0).
4.- Prefer shortest AS path.
5.- Prefer lowest origin code (IGP<EGP<Incomplete).
6.- Prefer lowest MED (metric, exchanged between autonomous systems).
7.- Prefer eBGP path over iBGP path.
8.- Prefer the path through the closest IGP neighbor (IGP cost).
9.- Prefer oldest route for eBGP paths.
10.- Prefer the path with the lowest BGP neighbor's Router ID.
11.- Prefer the path with the lowest neighbor IP address.
[ view entry ] ( 1803 views ) | print article
R1(config)#router ospf 20
R1(config-router)#area 1 virtual-link 10.30.30.30
R2(config)#router ospf 20
R2(config-router)#area 1 virtual-link 10.50.50.50
[ view entry ] ( 1519 views ) | print article
In IP-based computer networks, Virtual Routing and Forwarding (VRF) is a technology that allows multiple instances of a routing table to co-exist within the same router at the same time. Because the routing instances are independent, the same or overlapping IP addresses can be used without conflicting with each other.
[ view entry ] ( 1339 views ) | print article
Credits to Keith!
[ view entry ] ( 1355 views ) | print article
First, the latest releases of switch software have adopted a new naming convention:
a)ipbase (Formerly SMI): Cisco IOS IP base image and device manager files. This image has Layer 2+ and basic Layer 3 routing (Static, RIP) features.
b)ipservices(Formerly EMI): Cisco IOS IP services image and device manager files. This image has Layer 2+ and full Layer 3 features.
c)ipbasek9: Cisco IOS IP base cryptographic image and device manager files. This image has the Kerberos, Secure Shell (SSH), Layer 2+, and basic Layer 3 routing features.
d)ipservicesk9: Cisco IOS IP services cryptographic image and device manager files. This image has the Kerberos, SSH, Layer 2+, and full Layer 3 features.
http://www.cisco.com/en/US/products/hw/ ... 98851.html
The 3560/3570 switches also have an advipservices image that supports a subset of IPv6.
http://www.cisco.com/en/US/products/hw/ ... 7459b.html
-----------------------------------------
https://supportforums.cisco.com/thread/143438
[ view entry ] ( 1469 views ) | print article | related link
Other solutions:
CBAC
Reflexive ACLs
[ view entry ] ( 1357 views ) | print article
ip inspect command
----------------------------------
Alternative to Reflexive ACLs. Reflexive ACLs came out first.
[ view entry ] ( 1559 views ) | print article
The outbound ACL does not count for the router generated traffic, its the fact.
An access list can control traffic arriving at the router or leaving the router, but not traffic originating at the router.
in the Cisco Doc link
http://www.cisco.com/en/US/docs/ios-xml ... CBC37727F9
----------------------------
See command:
ip local policy route-map "route-map-name"
[ view entry ] ( 1443 views ) | print article
ASA is a different ball game!. ASA firewall defaults to permit traffic originated in more secure interfaces to be responded by less secure interfaces.
[ view entry ] ( 1572 views ) | print article
<<First <Back | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | Next> Last>>