From: Roger Dellaca (rdellaca@xxxxxxxxxx)
Date: Fri Sep 22 2000 - 19:37:37 GMT-3
this works great except when you start using more connections to the same dmac/
dsap. I have an SNA server with 7 connections to the same dmac/dsap, so I use
lsaps 04, 08, 0c, 10, 14, 18, 1c; I have a connection into another mainframe wh
ere I have been assigned a sap of dc. Although of course I plan on going with
what Cisco says for the lab.
Roger
1/4 & 5 in San Jose
>>> "Aziz, Mohammad" <Mohammad.Aziz@getronics.com> 09/21/00 11:10AM >>>
access-list has to be in range 200-299
access-list 200 permit 0XDDLL 0xddll
where
DD = DSAP
LL = LSAP
dd = wildcard mask to be applied to the DSAP
ll = wildcard mask to be applied to the LSAP
to permit all sna traffic
access-list 201 permit 0x0000 0x0d0d
to permit netbios traffic
access-list 201 permit 0x0f0f 0x0101
also, you may want to check out:
"netbios input-access-filter byte/host" to filter netbios locally:
http://www.cisco.com/univercd/cc/td/doc/products/software/ios112/112cg_cr/8c
book/8csrb.htm#xtocid1077545
-Sunny Aziz
-----Original Message-----
From: Eddie Parra [mailto:eparra@telocity.com]
Sent: Thursday, September 21, 2000 10:17 AM
To: CCIE Group Study
Subject: SNA Filtering Question...
I have a SNA question that I don't know enough about the technology to
answer. I have a practice lab that asks to only allow in certain SNA SAP's
and all "return packets"? Could anyone please clarify this?
Less than 48 hours till my CCIE lab in RTP!
-Eddie
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:00 GMT-3