networking-forum.com
Community BlogCommunity Wiki * Register  * Search  * Login
View unanswered postsView active topics

Board index » Cisco Networking » Cisco Routing and Switching

All times are UTC - 6 hours [ DST ]


Post new topic Reply to topic  Page 1 of 1
  [ 7 posts ] 
  Print view Previous topic | Next topic 
Author Message
stevester1
PostPosted: Wed Aug 01, 2012 1:11 am 
Offline
Ultimate Member
Ultimate Member

Joined: Thu Nov 18, 2010 3:54 pm
Posts: 757
Location: Canada
Certs: CCIE R&S
I get that to avoid fragmenting the packets we need to reduce the MTU to 1492, fine, but should the MTU restriction be applied at the virtual-template (server)/dialer (client) or on the physical ethernet interfaces?

If I apply it to one or the other, which takes precedence? Should I just apply it to both the virtual/dialer interfaces and the ethernet interfaces?

Thanks!
Top
 Profile  
 
Project2501
PostPosted: Wed Aug 01, 2012 5:25 am 
Offline
Post Whore
Post Whore
User avatar

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6071
Location: Perth, WA
Certs: CCNA
The dialer interface. It also helps if you permit ICMP inbound to assist with MTU path discovery.

_________________
- Pete
Top
 Profile  
 
stevester1
PostPosted: Wed Aug 01, 2012 7:00 am 
Offline
Ultimate Member
Ultimate Member

Joined: Thu Nov 18, 2010 3:54 pm
Posts: 757
Location: Canada
Certs: CCIE R&S
Project2501 wrote:
The dialer interface. It also helps if you permit ICMP inbound to assist with MTU path discovery.


Thanks man!

Regarding ICMP, why would I need to permit it? Won't it be forwarded like any other traffic?
Top
 Profile  
 
Project2501
PostPosted: Wed Aug 01, 2012 8:30 am 
Offline
Post Whore
Post Whore
User avatar

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6071
Location: Perth, WA
Certs: CCNA
Inbound? I don't know if you're using a ZBF or CBAC but you'll still have an inbound ACL that should permit ICMP.

_________________
- Pete
Top
 Profile  
 
stevester1
PostPosted: Wed Aug 01, 2012 8:35 am 
Offline
Ultimate Member
Ultimate Member

Joined: Thu Nov 18, 2010 3:54 pm
Posts: 757
Location: Canada
Certs: CCIE R&S
Project2501 wrote:
Inbound? I don't know if you're using a ZBF or CBAC but you'll still have an inbound ACL that should permit ICMP.


Oh no, I'm just labbing this up with two 2800s, no firewalls/security between.
Top
 Profile  
 
Project2501
PostPosted: Wed Aug 01, 2012 8:49 am 
Offline
Post Whore
Post Whore
User avatar

Joined: Thu Apr 17, 2008 6:44 pm
Posts: 6071
Location: Perth, WA
Certs: CCNA
Oh I see, my mistake.

_________________
- Pete
Top
 Profile  
 
stevester1
PostPosted: Wed Aug 01, 2012 8:52 am 
Offline
Ultimate Member
Ultimate Member

Joined: Thu Nov 18, 2010 3:54 pm
Posts: 757
Location: Canada
Certs: CCIE R&S
Project2501 wrote:
Oh I see, my mistake.


Thanks for the answer though ;)

Much appreciated
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 7 posts ] 

Board index » Cisco Networking » Cisco Routing and Switching

All times are UTC - 6 hours [ DST ]

Who is online

Users browsing this forum: Exabot [Bot], Google Feedfetcher, timaz, totaluser, wintermute000 and 28 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group