Hello All,
I'm facing a wierd issue.
Here's my Topology
10.1.1.0/24
R1 (fa 0/0 ) <----------------------> (fa 0/0 ) R2
.1 .2
Now i've applied an FPM policy on the fa 0/0 interface of R2 to block all
telnet traffic headed to R2 from R1.
class-map type access-control match-all FPM
match field TCP dest-port eq 23
This fails to block the telnet session. However, i was just trying out
various numbers and i found that "44" in place of 23 succeeds in blocking
the telnet session.
I tried this out with ICMP echo-requests as well. I tried blocking the
echo-requests using the "type" field in the ICMP phdf , but that didn't work
either.
Does anyone know why?
Cheers,
TacACK
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
