The Packet University

Main Menu

Home

Tech News

Links

FAQ

About

Report a comment

Thank you for taking the time to report the following comment to the administrator of this site.
Please complete this short form and click the submit button to process your report.

Comment in question

Posted by TacACK, on 21-11-2009 09:46,

Great Article Paul!
When you mentioned this to me on twitter, i was kinda surprised over the PING's which are sent out. But i have one question. Suppose the firewall has 3 interfaces ( Inside, DMZ and Outside) and a packet arrives on the inside interface destined to a remote address for which there is no entry available in the CAM table. Will it send pings on both the dmz and outside interfaces?

Regarding the BPDU's i'm confused too.
1) Below Ethertype 0x600 nothing's permitted ( ex : CDP, IPv6 , ISIS ,etc
2) STP BPDU's have to be explicitly permitted using ethertype ACL's

» Report this comment to administrator

» Go back to the article

Polls

What type of Study do you prefer?

	Traditional Classroom
	Mentored Learning
	Audio/Video on Demand
	Remote Classroom
	Books/Publications
	Blog Entries
	Other

Packet Bytes

ISAKMP DPD and Invalid SPI Recovery

Hello Everyone,

This is my first blog post and I...
Quality of Service for VPN Part 3 ? DMVPN

We conclude this multi-part techtorial with Part 3, QoS...
IPexpert Student One of First to Pass CCIE Routing and Switching 4.0 Exam!
We?ve heard from a few different vendors that some...
ASA ? Regular Expression Matching
Regular expression matching is used for several different applications...
Cisco IOS Zone Based Firewalls

One of the CCIE Security v3.0 topics that often...
Quality of Service for VPN Part 1 ? ASA
Hi everyone and welcome to this my first post...
SVTI, DVTI, SSL VPN, and L2TP over IPSec On 1 Cisco Router
As per PacketU?s inquiry, static and dynamic VTI, L2TP over...
Change in Venue
As many of you have already heard I have...
Brandon Carroll Joins the IPexpert Team
I?m please to announce that another industry-renowned Instructor has...
The Top Ten Funniest Core Knowledge Responses
The latest Top Ten List from Anthony Sequeira.
Congratulations to Tyson Scott, Triple CCIE!
Gang - This year has been a very challenging year...
The Top Ten Qualities for a Successful Lab Attempt
Check out the Top Ten Qualities for a Successful...
How quickly can you troubleshoot an ASA configuration?
Test your skills at troubleshooting an ASA configuration that...
How to configure IOS Zone-Based Firewall
Cisco introduced IOS Zone-Based Firewalling (ZFW) in Cisco IOS...
NAT and IPSEC Interoperability
After close to three weeks of silence......
RSTP and Fast Convergence
Fast Convergence for Designated Ports RSTP protocol?s fast convergence depends...
The OEQ Dilema
If you are following Group Study you will see...
IPSEC and High Availability
Hi IPexpert blog followers, Today I am going to teach you about...