From: Fred Ingham (fningham@xxxxxxxxxxxxxxxx)
Date: Tue Jul 20 1999 - 14:43:50 GMT-3
Try applying the list as "appletalk distribute-list 600 in" rather than
"appletalk access-group 600".
Jason Aarons wrote:
>
> I remember seeing something recently about Appletalk access list issues.
>
> I'm following p.707 of Caslow and don't seem to have much luck with the
> router paying attenting to the apple filter;
>
> int serial0
> description stub that leads to rest of network
> appletalk cable-range 100-100
> appletalk access-group 600
>
> int ethernet0
> appletalk cable-range 400-499
> appletalke zone ZEUS
>
> int ethernet1
> appletalk cable-range 500-599
> appletalke zone TIGRIS
>
> access-list 600 deny cable-range 400-499
> access-list 600 permit other-access
>
> For whatever reason the rest of the network can see cable-range 400 and zone
> ZEUS.
>
> I've tried reloading, debug apple rtmp, etc. If I remove the permit
> other-access the filter starts working (blocks all traffic), but I have
> other zones on this router and only need to filter ZEUS.
>
> Any ideas why my lab is working ?
>
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:21:42 GMT-3