RES: [c-nsp] Hiding a Cisco Router from a Traceroute
Saku Ytti
saku+cisco-nsp at ytti.fi
Thu Oct 20 14:31:10 EDT 2005
On (2005-10-20 16:19 -0200), Murilo Antonio Pugliese wrote:
> Before trying to deploy MPLS in your hole backbone just to make use of
> the "no tag-switching ip propagate-ttl forwarded" command try the
>
> ip unreachables To enable the generation of Internet Control Message Protocol (ICMP) unreachable messages,
This has the same downside as ACL's (people see that there is node, but
can't know it's IP), but ACL in AS borders in egress direction you can
maintain working traceroute from your own, eg management network.
--
++ytti
More information about the cisco-nsp
mailing list