Apple access-list 600 fails

From: Jason Aarons (jaarons@xxxxxxxxxxx)
Date: Mon Jul 19 1999 - 21:54:26 GMT-3

• Next message: Hank Burgos: "Re: CCIE Lab"
• Previous message: Poston, Barry: "CCIE Exam"
• Next in thread: Fred Ingham: "Re: Apple access-list 600 fails"
• Maybe reply: Fred Ingham: "Re: Apple access-list 600 fails"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
I remember seeing something recently about Appletalk access list issues.

I'm following p.707 of Caslow and don't seem to have much luck with the
router paying attenting to the apple filter;

int serial0
description stub that leads to rest of network
appletalk cable-range 100-100
appletalk access-group 600

int ethernet0
appletalk cable-range 400-499
appletalke zone ZEUS

int ethernet1
appletalk cable-range 500-599
appletalke zone TIGRIS

access-list 600 deny cable-range 400-499
access-list 600 permit other-access

For whatever reason the rest of the network can see cable-range 400 and zone
ZEUS.

I've tried reloading, debug apple rtmp, etc. If I remove the permit
other-access the filter starts working (blocks all traffic), but I have
other zones on this router and only need to filter ZEUS.

Any ideas why my lab is working ?

• Next message: Hank Burgos: "Re: CCIE Lab"
• Previous message: Poston, Barry: "CCIE Exam"
• Next in thread: Fred Ingham: "Re: Apple access-list 600 fails"
• Maybe reply: Fred Ingham: "Re: Apple access-list 600 fails"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:21:42 GMT-3