REFLEXIVE ACL ON LAB 3 VER 4

HI

Can any one correct me bit confusing this one, below is a config from task 9.1 lab 3 ver 4

my understanding of this is as follows correct me if im wrong

Any tcp, udp, icmp traffic leaving r6 towards bb1 will be reflected to a state table on r6 by using the OUT_ACL.

UPON return into the network icmp, tcp, udp traffic is permited wether its using rip or bgp traffic

trace route using icmp will be permitted until the ttl timer expire or that the port is unreachable

please explain to me

r6
int s0/0
ip access-group IN_ACL in
ip access-group OUT_ACL out
!
ip access-list extended IN_ACL
permit icmp any any time-exceeded
permit icmp any any port-unreachable
permit udp any any rip
permit tcp any any bgp
permit tcp any eq bgp any
evaluate MY_REFLECT
!
ip access-list extended OUT_ACL
permit tcp any any reflect MY_RELFLECT
permit udp any any reflect MY_REFLECT
permit icmp any any reflect MY_REFLECT
!
!

Comments

Sign In or Register to comment.