[c-nsp] ACL rejecting rather than dropping
Gert Doering
gert at greenie.muc.de
Fri May 25 11:38:14 EDT 2007
Hi,
On Fri, May 25, 2007 at 05:33:07PM +0200, Vincent De Keyzer wrote:
> on a "normal" IOS, is there a way to make an ACL send back a ICMP
> unauthorized message, rather than just dropping the packet?
That's what 'normal IOS' does by default, unless you have 'no ip unreach'
configured on the ingress interface :-)
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
More information about the cisco-nsp
mailing list