Try reversing your match in class-map port-filter by moving the “match not port udp 848” before the “match closed-ports” and see if that resolves the issue.
*CURRENT* class-map type port-filter matach-any port-filter match closed-ports match not port udp 848 *SUGGESTED* * * class-map type port-filter matach-any port-filter match not port udp 848 match closed-ports * * thanks *Matt Manire* *CCSP, CCNP, CCDP, MCSE* *2003 & MCSE 2000* *Information Systems Security Manager* [email protected] *t*: 817.525.1863 *f*: 817.525.1903 *m*: 817.271.9165 *First Rate* | 1903 Ascension Boulevard | Arlington, TX 76006| www.FirstRate.com <http://www.firstrate.com/> *From:* [email protected] [mailto: [email protected]] *On Behalf Of *Fawad Khan *Sent:* Sunday, August 12, 2012 9:52 AM *To:* [email protected] *Cc:* ccie_security *Subject:* Re: [OSL | CCIE_Security] control plane Did you try debug to see what is dropping the traffic. If its dmvpn then you need exclude isakmp as well. On Sunday, August 12, 2012, Alexei Monastyrnyi wrote: Did you mean GETVPN? as udp 848 is GETVPN port, not DMVPN On 8/12/2012 7:12 PM, Krishna Nagam wrote: Hi, i want to know after configuring the control plane my DMVPN is not working.. drop all non-listed and closed port on the router........... on the same router my dmvpn is working before confiugring the control plane on router. class-map type port-filter matach-any port-filter match closed-ports match not port udp 848 policy-map type port-filter port-pol class port-filter drop control_plane host service-policy type port-filter input port-pol after this how to enable the DMVPN through this router _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com -- FNK
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
