Information Technology Reference
In-Depth Information
•
The access list must be referenced by a dialer list, or the packet must be of a protocol which is
universally permitted by the
dialer-list
command.
•
The dialer list must be associated with a dialer interface by use of a
dialer-group
command.
By default, no packets are considered to be interesting. Interesting packet definitions must be explicitly
declared in a router or access server configuration.
Dialer Group
In the configuration of each dialer interface on the router or access server, there must be a
dialer-group
command. If the
dialer-group
command is not present, there is no logical link between the interesting
packet definitions and the interface. The command syntax is as follows:
dialer-group [group number]
The
group-number
is the number of the dialer access group to which the specific interface belongs. This
access group is defined with the
dialer-list
command. Acceptable values are nonzero, positive integers
between 1 and 10.
An interface can be associated with a single dialer access group only; multiple dialer-group assignment
is not allowed. A second dialer access group assignment will override the first. A dialer access group is
defined with the
dialer-group
command. The
dialer-list
command associates an access list with a dialer
access group.
Packets that match the dialer group specified trigger a connection request.
The destination address of the packet is evaluated against the access list specified in the associated
dialer-list
command. If it passes, either a call is initiated (if no connection has already been established)
or the idle timer is reset (if a call is currently connected).
Dialer List
The
dialer-list
global configuration command is used to define a DDR dialer list to control dialing by
protocol, or by a combination of protocol and access list. Interesting packets are those that match the
protocol level
permit
or which are permitted by the
list
in the
dialer-list
command:
dialer-list
dialer-group
protocol
protocol-name {
permit
|
deny
|
list
access-list-number
|
access-group}
•
dialer-group is the number of a dialer access group identified in any
dialer-group
interface
configuration command.
•
protocol-name is one of the following protocol keywords: appletalk, bridge, clns, clns_es, clns_is,
decnet, decnet_router-L1, decnet_router-L2, decnet_node, ip, ipx, vines, or xns.
•
permit permits access to an entire protocol.
•
deny denies access to an entire protocol.
•
list specifies that an access list will be used for defining a granularity finer than an entire protocol.
•
access-list-number specifies the number of the access list the dialer-list is using to decide what is
interesting traffic. Access list numbers can be specified for any standard or extended access lists,
including DECnet, Banyan VINES, IP, Novell IPX, XNS, and bridging types. See Table 16-7 for the
supported access list types and numbers.
