RE: Multilayer Switching, CCO contradicts itself? [7:51272]
I think your argument makes a lot of sense. Turpin, Mark wrote: > > I can understand your disagreement. But I hope you will > understand that > its semantics at this point. A flow by any other name is still > a flow. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51350&t=51272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multilayer Switching, CCO contradicts itself? [7:51272]
I can understand your disagreement. But I hope you will understand that its semantics at this point. A flow by any other name is still a flow. You use a mask to match it. Just like you use a wildcard mask to match addresses in an access-list. If I say to a co-worker, "Use a full flow on that switch", I know the meaning is still conveyed. I want them to match on {s,d,prot,port}. If you find yourself in a situation asking about a flow mask, and you're faced with the options "Full flow" or "Full flow mask": 1) Comment and say that the use of those answers together is terrible 2) Pick the full flow mask since you are being asked about "masks" I wouldn't lose any sleep over this one =] cheers, -Mark -Original Message- From: Thorne Gene [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 13, 2002 3:44 PM To: [EMAIL PROTECTED] Subject: RE: Multilayer Switching, CCO contradicts itself? [7:51272] I disagree. There are not 3 types of flows, just 3 ways to switch them. "destination-ip—The least-specific flow mask. The MLS-SE maintains one MLS entry for each destination IP address. All flows to a given destination IP address use this MLS entry. This mode is used if there are no access lists configured on any of the MLS-RP interfaces" Note the use of the phrase "all flows" in the quote. Turpin, Mark wrote: > > There types of flows: > Destination - per {dest} flow > Source Destination - per {source/dest address} pair > IP (aka Full) Flow - per {source, dest, protocol and port} set > > Look under the section labeled Flow Mask Modes "The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from all computers." Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51323&t=51272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multilayer Switching, CCO contradicts itself? [7:51272]
I disagree. There are not 3 types of flows, just 3 ways to switch them. "destination-ip—The least-specific flow mask. The MLS-SE maintains one MLS entry for each destination IP address. All flows to a given destination IP address use this MLS entry. This mode is used if there are no access lists configured on any of the MLS-RP interfaces" Note the use of the phrase "all flows" in the quote. Turpin, Mark wrote: > > There types of flows: > Destination - per {dest} flow > Source Destination - per {source/dest address} pair > IP (aka Full) Flow - per {source, dest, protocol and port} set > > Look under the section labeled Flow Mask Modes > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51322&t=51272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multilayer Switching, CCO contradicts itself? [7:51272]
In my understanding of MLS, the first paragraph is correct. Each unidirectional sequence of packets with same source and destination and transport layer is always a separate flow. The second paragraph seems to be referring to the destination-ip flow mask, in which different flows with the same destination are switched on the basis of a single MLS cache entry. This does NOT imply that they are all the same flow, only that the destination-ip mask directs all flows to the same cache entry. This is sort of analagous to the way a subnet mask directs all IP packets to the same interface, hence the use of the term "mask". Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51321&t=51272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multilayer Switching, CCO contradicts itself? [7:51272]
There types of flows: Destination - per {dest} flow Source Destination - per {source/dest address} pair IP (aka Full) Flow - per {source, dest, protocol and port} set Look under the section labeled Flow Mask Modes hth, -mark -Original Message- From: Sean Wolfe [mailto:[EMAIL PROTECTED]] Sent: Monday, August 12, 2002 4:51 PM To: [EMAIL PROTECTED] Subject: Multilayer Switching, CCO contradicts itself? [7:51272] Hello all. In the below quote from CCO, is Cisco contradicting themselves in the 2nd paragraph regarding each transport-layer session being a different flow? Or do they mean that IF only the destination IP is used to ID a flow, THEN all diff transport-layer sessions are the same flow? Thanks! URL is: http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_2/layer3/m ls.htm Quote is here: " A flow is a unidirectional sequence of packets between a particular source and destination that share the same protocol and transport-layer information. Communication from a client to a server and from the server to the client are separate flows. For example, Telnet traffic transferred from a particular source to a particular destination comprises a separate flow from File Transfer Protocol (FTP) packets between the same source and destination. Flows are based only on Layer 3 addresses, which allow IP traffic from multiple users or applications to a particular destination to be carried on a single flow if only the destination IP address is used to identify a flow. " "The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from all computers." Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51277&t=51272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]