Hi,

Thanx for u r reply but it does not accepts the default config.

error is

CSS11050(config-owner-content[TEST])# protocol any

CSS11050(config-owner-content[TEST])# active

%% Protocol of TCP or UDP must be specified

defualt setting is not taking same error i am getting.

please let me know if any IOS related problem or something else.

Do you have a port specified in your content rule? I didn't see one in your example above ...

If you need to specify a port, then you have to specify a protocol -- so you'll need two (2) different rules to support tcp and udp.

~Zach

Hi,

Thanks for u r reply.

Please find the configuration.

if u can tell me how to go ahead with current config.

interface e1

bridge vlan 105

!************************** CIRCUIT **************************

circuit VLAN105

ip address 172.16.8.1 255.255.255.128

!************************** SERVICE **************************

service DNS-1

ip address 172.16.8.2

active

service DNS-2

ip address 172.16.8.3

active

!*************************** OWNER ***************************

owner DNS

content DNS-VIP

port 53

add service DNS-1

add service DNS-2

vip address 172.16.8.1

protocol udp

active

!*************************** GROUP ***************************

group DNS-Group

vip address 202.138.8.10

add destination service DNS-1

add destination service DNS-2

If you want to allow DNS over TCP, you would need the following added to your configuration:

!

owner DNS

content DNS-TCP

port 53

add service DNS-1

add service DNS-2

vip address 172.16.8.1

protocol tcp

active

!

~Zach

Hi,

My problem is solved.please find below config.I removed the command port 53 & it is taking protocol any.

content DNS-TCP

add service DNS-1

add service DNS-2

vip address 172.16.8.1

protocol any------well this is hidden while u take config.ican enter this command without any problem

active

thanks for u r your