cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
645
Views
0
Helpful
2
Replies

want to confirm my understanding about fragmented packets

sarahr202
Level 5
Level 5

Hi everybody.

Let say a host 199.199.199.3 wants to telnet to 199.199.199.2

Assume the router containing the ACL as shown below decides to fragment the packet into three, f1,f2,f3

First F1 matches the first ACL so it is dropped.Remaining non inital fragments will be dropped too because the first acl matches the only layer 3 information in non initial fragments

Is my understanding correct?

access-list 199 deny tcp any host 199.199.199.2 eq 23

access-list 199 permit tcp any host 199.199.199.

thanks

1 Accepted Solution

Accepted Solutions

Reza Sharifi
Hall of Fame
Hall of Fame

Hi Sarah:

Correct, since the first access list statement denies 199.199.199.2, the rest of the statement in the list is skipped and the packet is dropped.

HTH

View solution in original post

2 Replies 2

Reza Sharifi
Hall of Fame
Hall of Fame

Hi Sarah:

Correct, since the first access list statement denies 199.199.199.2, the rest of the statement in the list is skipped and the packet is dropped.

HTH

thanks Reza

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: