22.114.0. WHAT WILL HAPPEN TO ALL OTHER PACKETS

172. - Syngress Managing Cisco Network Security

172. - Syngress Managing Cisco Network Security

Syngress Managing Cisco Network Security

Nội dung
Đáp án tham khảo

172.22.114.0. What will happen to all other packets? Once again, the

implicit deny all will drop any other packets.

In the TCP segment, there are six flag bits, two of which are the ACK

and RST. If one of these bits is set, then a match will occur. The SYN bit

indicates that a connection is being established. A packet with a SYN bit

without an ACK bit is the very first packet sent to establish a TCP connec-

tion. Figure 2.5 shows the TCP setup handshake.

Another issue to consider here is that as the administrator, you may

not be certain what protocols the host may be using. However, we do know

ports are chosen by workstations randomly between the port ranges of

1024 through 65535. Keeping this in mind, we could modify the first line

of the access list as follows:

access-list 111 permit tcp any host 172.17.0.0 0.0.255.255 gt 1023established

https://traloihay.net

Figure 2.4 The access list applied to serial 0 inbound.

Internet