Hi Parvees I don't think it is a typo rather intentional. I tried having "match-any" which makes the configuration non-working.
With regards Kings On Sat, May 7, 2011 at 1:09 PM, Parvees M <[email protected]> wrote: > Kings, > > If is logical OR it should be "ANY" and if it is logical "AND" it should be > "ALL". > > I believe this was a typo , coz in the condition statement they mention > > *"port-filter policy to drop all traffic destined to closed or > "nonlistened" ports except NTP. " > > *but the policy used is default ( which is match-all) > > so it should be a typo > > With best regards, > > Parvees M Davida > CCNP ,CISSP,JNCIS-FWV,ITIL V3 > > > > > > > On Sat, May 7, 2011 at 10:37 AM, Kingsley Charles < > [email protected]> wrote: > >> Hi all >> >> Should we use "match-all" or "match-any", when using multiple criterias in >> the port-filter class-map. I thought "any" was the correct one. >> >> >> Snippet from >> http://www.cisco.com/en/US/docs/ios/qos/configuration/guide/ctrl_plane_prot_ps6441_TSD_Products_Configuration_Guide_Chapter.html >> >> Router(config)# class-map type port-filter pf-class >> >> Router(config-cmap)# match not port udp 123 >> >> Router(config-cmap)# match closed-ports >> >> Router(config-cmap)# exit >> >> Router(config)# policy-map type port-filter pf-policy >> >> Router(config-pmap)# class pf-class >> >> Router(config-pmap-c)# drop >> >> Router(config-pmap-c)# end >> >> >> >> With regards >> Kings >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
