RE: [cisco-ttl] Re: ICMP redirect

From: Coskun Kirac (ckirac) (ckirac@cisco.com)
Date: Fri Feb 28 2003 - 17:54:20 GMT

  • Next message: mayhan: "[cisco-ttl] ip-telefon"

    Genco,

    ftp://ftp.rfc-editor.org/in-notes/rfc792.txt

    [Page 12]
    ...
    Description

          The gateway sends a redirect message to a host in the following
          situation. A gateway, G1, receives an internet datagram from a
          host on a network to which the gateway is attached. The gateway,
          G1, checks its routing table and obtains the address of the next
          gateway, G2, on the route to the datagram's internet destination
          network, X. If G2 and the host identified by the internet source
          address of the datagram are on the same network, a redirect
          message is sent to the host. The redirect message advises the
          host to send its traffic for network X directly to gateway G2 as
          this is a shorter path to the destination. The gateway forwards
          the original datagram's data to its internet destination.

          For datagrams with the IP source route options and the gateway
          address in the destination address field, a redirect message is
          not sent even if there is a better route to the ultimate
          destination than the next address in the source route.

          Codes 0, 1, 2, and 3 may be received from a gateway.

    > -----Original Message-----
    > From: Genco Yilmaz [mailto:gencoyilmaz@yahoo.com]
    > Sent: Friday, February 28, 2003 6:08 PM
    > To: cisco-ttl@yahoogroups.com
    > Subject: RE: [cisco-ttl] Re: (unknown)
    >
    >
    > merhabalar,
    > bu icmp-redirect lerin kullanim alani nedir tam
    > olarak.
    > daha iyi bir route oldugunde yonlendirmek gibi mi?
    > Bir ornek verebilmeniz mumkun mu?
    >
    > tesekkurler
    >
    > --- Ozgur ERGEN <ozgur.ergen@siemens.com.tr> wrote:
    > > Slm...
    > >
    > > Yanlis anlamadiysam, 10.0.0.1 ve 10.0.0.2 10.16.0.1
    > > erisebilecek diger
    > > makinalar erisemiyecek. bunun disinda da bir access
    > > kisitlamasi yok.
    > > devrim'in access listesine bir ekleme ile benim
    > > anladigim sekilde bir liste
    > > olusturulmali... Bu da
    > >
    > > sabena(config)#access-list 101 permit ip host
    > > 10.0.0.1 host 10.16.0.1
    > > sabena(config)#access-list 101 permit ip host
    > > 10.0.0.2 host 10.16.0.1
    > > sabena(config)#access-list 101 deny ip any host
    > > 10.16.0.1
    > > sabena(config)#access-list 101 permit ip any any
    > >
    > > Bu arada eger Router A ile Router B ayni lan
    > > segmentinde ise, bu segmentte
    > > olan pc'ler isterlerse routing tablolarini
    > > degistirerek a router'ina hic
    > > ugramdan b router'ndan sistemlere ulasabilirler.
    > > Yani access list pek bir
    > > ise yaramiyabilir. B router'i icin de bir access
    > > list yapilmasi gerekli.
    > > Ayni access-list kullanilabilir. Tabi bi de
    > > icmp-redirect'i kapatmak
    > > gerekebilir. Ancak bunun gerekliligi konusunda cok
    > > emin degilim.
    > >
    > > Iyi calismalar.
    > >
    > > Ozgur Ergen
    > >
    > > -----Original Message-----
    > > From: Devrim Yener Kucuk [mailto:dkucuk@cisco.com]
    > > Sent: Wednesday, February 26, 2003 15:14
    > > To: cisco-ttl@yahoogroups.com
    > > Subject: Re: [cisco-ttl] Re: (unknown)
    > >
    > >
    > > selam
    > >
    > > sabena(config)#access-list 101 permit ip host
    > > 10.0.0.1 host 10.16.0.1
    > > sabena(config)#access-list 101 permit ip host
    > > 10.0.0.2 host 10.16.0.1
    > > en altta explicit deny var unutma sadece iki sourece
    > > ip bu destinationa
    > > ulasacak.
    > >
    > > conf t
    > > int e 0/0
    > > ip access-group 101 tanimlarsan calismasi lazim
    > >
    > > devrim
    > >
    > >
    > >
    > >
    > > "resitaks " wrote:
    > >
    > > > denedim ama bir yerlerde bir hata yapiyorum
    > > sanirim. Soyle ki:
    > > >
    > > > 10.0.0.1
    > > > 10.0.0.2 makinalari 10.16.0.1 makinasina erisecek
    > > ama digerleri
    > > > erisemiyecek ve diger tum makinalar A routetinin
    > > diger portlarina
    > > > erisebilecek.
    > > >
    > > > Bu senaryoyu bir turlu oturtamadim. Ornek
    > > verirseniz sevinirim..
    > > >
    > > > Saygilar..
    > > > Resit
    > > >
    > > > --- In cisco-ttl@yahoogroups.com, "akgun ozsoy"
    > > <akgun@e...> wrote:
    > > > > Bu "bazi kullaniclarin" statik IP adresleri
    > > mevcut ise sorunu
    > > > extended
    > > > > access-list ile basitce cozebilirsin.
    > > > >
    > > > > Akgun.
    > > > > -----Original Message-----
    > > > > From: Resit Ax [mailto:resitaks@y...]
    > > > > Sent: 26 ?ubat 2003 Car?amba 14:33
    > > > > To: cisco-ttl@yahoogroups.com
    > > > > Subject: [cisco-ttl] (unknown)
    > > > >
    > > > >
    > > > > Selam,
    > > > >
    > > > > Ayni eth. uzerinde iki tane router var. (A ve
    > > B
    > > > > diyelim) Bazi kullanicliar disinda kimse A
    > > uzerinden B
    > > > > nin bagli oldugu segmentteki bir servera
    > > ulasaMAsin
    > > > > istiyorum. A router i ayni zamanda internet
    > > icinde
    > > > > paketlerin ilk hop noktasi.
    > > > >
    > > > > Simdiden teskkurler..
    > > > > Ax.
    > > > >
    > > > >
    > > __________________________________________________
    > > > > Do you Yahoo!?
    > > > > Yahoo! Tax Center - forms, calculators, tips,
    > > more
    > > > > http://taxes.yahoo.com/
    > > > >
    > > > > Yahoo! Groups Sponsor
    > > > > ADVERTISEMENT
    > > > >
    > > > >
    > > > >
    > > > >
    > > > > Bu listden g}kmak igin
    > > cisco-ttl-unsubscribe@yahoogroups.com
    > > > adresine bir
    > > > > e-posta gvndermeniz yeterlidir.
    > > > >
    > > > >
    > > > >
    > > > > Your use of Yahoo! Groups is subject to the
    > > Yahoo! Terms of
    > > > Service.
    > > >
    > > >
    > > > Yahoo! Groups Sponsor
    > > ADVERTISEMENT
    > >
    > >
    > > >
    > > > Bu listden çıkmak için
    > > cisco-ttl-unsubscribe@yahoogroups.com adresine
    > > > bir e-posta göndermeniz yeterlidir.
    > > >
    > > >
    > > >
    > > > Your use of Yahoo! Groups is subject to the Yahoo!
    > > Terms of Service.
    > >
    > > ------------------------ Yahoo! Groups Sponsor
    > >
    > > Bu listden çıkmak için
    > > cisco-ttl-unsubscribe@yahoogroups.com adresine bir
    > > e-posta göndermeniz yeterlidir.
    > >
    > >
    > >
    > > Your use of Yahoo! Groups is subject to
    > > http://docs.yahoo.com/info/terms/
    > >
    > >
    >
    >
    > __________________________________________________
    > Do you Yahoo!?
    > Yahoo! Tax Center - forms, calculators, tips, more
    > http://taxes.yahoo.com/
    >
    > ------------------------ Yahoo! Groups Sponsor
    > ---------------------~-->
    > Get 128 Bit SSL Encryption!
    > http://us.click.yahoo.com/FpY02D/vN2EAA/xGHJAA/26EolB/TM
    > --------------------------------------------------------------
    > -------~->
    >
    > Bu listden çıkmak için cisco-ttl-unsubscribe@yahoogroups.com
    > adresine bir e-posta göndermeniz yeterlidir.
    >
    >
    >
    > Your use of Yahoo! Groups is subject to
    > http://docs.yahoo.com/info/terms/
    >
    >
    >

    ------------------------ Yahoo! Groups Sponsor ---------------------~-->
    Get 128 Bit SSL Encryption!
    http://us.click.yahoo.com/FpY02D/vN2EAA/xGHJAA/26EolB/TM
    ---------------------------------------------------------------------~->

    Bu listden çıkmak için cisco-ttl-unsubscribe@yahoogroups.com adresine bir e-posta göndermeniz yeterlidir.

     

    Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/



    This archive was generated by hypermail 2.1.5 : Fri Feb 28 2003 - 21:55:06 GMT