Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
450
Views
0
Helpful
2
Replies

DENY TRAFFIC

O&M MPLS CNT
Level 1
Level 1

‎08-17-2016 12:47 PM

Dear,

I want to block traffic to be routed through same interface it got in my router. Is it possible?

Ideas maybe? Please

Thanks

Labels:
0 Helpful
2 Replies 2

Milos Megis
Level 3
Level 3

‎08-18-2016 12:06 AM

I think that this is exactly thing which ICMP redirect does.

So just enable this feature (I think that  it is enabled by default).

Or if you want to discard traffic (not redirect to another gateway), then use extended ACL.
Let say that you use network 192.168.1.0/24
then create extended ACL with rules:
deny ip 192.168.1.0 0.0.0.255 192.168.1.0 0.0.0.255
permit ip any any

And apply on interface with command:
ip access-group ACL_NAME out

Now all outbound traffic on interface from same network will be dropped.

But situation described by you shouldn´t happened.

Please correct me someone if I am wrong.

0 Helpful

O&M MPLS CNT
Level 1
Level 1
In response to Milos Megis

‎08-24-2016 10:51 AM

Thanks Milos.

One problem with ICMP redirects, first packet is forwarded independently of existency of a better route. Next packets will use ICMP redirect's information.

I think that, cisco should have a simple command to avoid this scene. 

Greetings...!!

0 Helpful
Customers Also Viewed These Support Documents