[c-nsp] CBAC and assymetricity
Joe Maimon
jmaimon at ttec.com
Wed Feb 8 23:32:58 EST 2006
Cust CPE---Link A--<-- ISP A R1----Colo
| |
| ^
| |
+----Link B---> ISP A R2
(moz users may want to ctrl-u for the diagram)
Packet from cpe comes into ISP A r2 on Link B destined for colo
Colo packet goes to ISP A R1 to CPE link A
Colo sees initial packets from Cust CPE, but TCP connections do not proceed.
They work fine if ISP A R2 removes
"ip inspect rulebase-name in"
from the Link B
I read that CBAC "doesnt support assymetry"
Does this mean that this is doomed?
More information about the cisco-nsp
mailing list