Re: Appletalk includes and within

From: Mark Lewis (markl11@xxxxxxxxxxx)
Date: Sun Oct 01 2000 - 19:32:44 GMT-3

• Next message: John Conzone: "Re: dlsw filtering/icanreach"
• Previous message: Jeff Sapiro: "dlsw filtering/icanreach"
• Maybe in reply to: Kirk Bollinger: "Appletalk includes and within"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I think it's a typo - I've been playing around with these quite a lot and
they work in exactly the way John described (includes- cable at least
partially in the range specified; within- cable entirely in the range
specified).

Which doc.s are you using? The version 12.0 hardcopy docs (Vol.II) describe
it perfectly.

Play with it a bit and you'll find it's v.easy.

Mark

>From: Kirk Bollinger <kirk@thebollingers.net>
>Reply-To: Kirk Bollinger <kirk@thebollingers.net>
>To: John Conzone <jkconzone@home.com>
>CC: ccielab@groupstudy.com
>Subject: Re: Appletalk includes and within
>Date: Sun, 1 Oct 2000 02:07:19 -0400 (EDT)
>
>That makes sense but I don't understand the second example
>
>!do not permit pkts to be routed from networks 991 through 995
> access-l 601 permit within 991-995
>
>1) is this just a typo on the DOC CD?
>2) are the ranges inclusive or exclusive ie. will 991 OR 995 be permitted
>3) Why dows the DOC say this denies 991 through 995??
>
>-Kirk
>
>
>On Sun, 1 Oct 2000, John Conzone wrote:
>
> > Kirk, the "includes" statement means that if any part of the cable
>range
> > matches the include statement, permit or deny accordingly.
> >
> > Access-list 601 permit includes 970-990, means that a cable range of
>975-995
> > will match (be permitted in this case) because the statement INCLUDES
> > networks in that range. If ANY network in the cable range matches what
>is
> > specified with INCLUDE, then the whole cable range passes and the
>applicable
> > conditon will be set. (permit or deny)
> >
> > Within means that the whole cable range must be within the range
> > specified in the statement.
> >
> > Access-list 601 permit within 970-990, means that the same cable range
>of
> > 975-995 will NOT match because all networks in 975-990 do not fall
>WITHIN
> > the range specified. A cable range of 975-985 would macth.
> >
> > Hope this helps.
> >
> > ----- Original Message -----
> > From: "Kirk Bollinger" <kirk@thebollingers.net>
> > To: <ccielab@groupstudy.com>
> > Sent: Sunday, October 01, 2000 1:31 AM
> > Subject: Appletalk includes and within
> >
> >
> > > Can someone shed some more light on the Appletalk access-list options
> > > include and within?
> > >
> > > >From the Cisco doc here is an example:
> > >
> > > !do not permit pkts to be routed from networks 970-990
> > > access-list 601 deny includes 970-990
> > >
> > > and then
> > >
> > > !do not permit pkts to be routed from networks 991 through 995
> > > access-l 601 permit within 991-995
> > >
> > > I just don't get it!
> > >
> > > Thanks!
> > > -Kirk
> > > 10 days left
> > >

• Next message: John Conzone: "Re: dlsw filtering/icanreach"
• Previous message: Jeff Sapiro: "dlsw filtering/icanreach"
• Maybe in reply to: Kirk Bollinger: "Appletalk includes and within"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:22 GMT-3