[nsp] RPF problem with ICMP unreachables
Ilker TEMIR
itemir@cisco.com
Sun, 24 Nov 2002 18:54:37 +0100
> > the interface which has the *highest* IP address (which happens to start
> > with 212.x.x.x) on that router. My RPF check drops the packet
(correctly).
>
> Does the customer router run any kind of MPLS VPNs? There is a known
> issue (Cisco will not accept that the behavior is incorrect) where
> outgoing telnet from a router, from an interface in a VRF, will choose
> the IP address of the first interface in that VRF, not the outgoing
> interface. It certainly breaks POLA big time. I was wondering if your
> ICMP problem could be related.
This is a complete different story. See
CSCdr60586: Telnet in VRF should be sourced from best local address
which has been duplicated to CSCdw22403
Ilker
>
> Steinar Haug, Nethelp consulting, sthaug@nethelp.no
> _______________________________________________
> cisco-nsp mailing list real_name)s@puck.nether.net
> http://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>