RE: DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY.

From: Pat Bodin (pbodin@xxxxxxxxx)
Date: Sat Apr 28 2001 - 07:44:19 GMT-3

• Next message: Pat Bodin: "RE: VPI/VCI, DLCI, Dialer String"
• Previous message: Umer Khan: "DLSw+ Explorer Queue question"
• Maybe in reply to: Elias Aggelidis: "DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
According to the following site
 http://www.cisco.com/warp/public/698/acl200.html ), here is the way you
permit the following traffic types.

access-list 200 permit 0x0000 0x0D0D - SNA (major saps)
access-list 200 permit 0xF0F0 0x0101 - Netbios
access-list 200 permit 0xE0E0 0x0000 - IPX
access-list 200 permit 0x0000 0xFFFF - ALL

I hope that helps!

Pat

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Johnny Dedon
Sent: Saturday, April 28, 2001 1:44 PM
To: Masood Malik; netsea; ccielab@groupstudy.com
Subject: Re: DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY.

Guys,
I may have missed the original question but if it was what access-list to
block all sna traffic...
Wouldn't access-list 200 deny 0x0404 0x0D0D do the trick?
SNA uses lsap 04,08,and 0C.
0x0404 with the mask 0x0D0D would block 0404 and command response as well as
0808 and its command response and 0C0C and its command response.
Do you agree?
Johnny Dedon
Senior Staff Consultant
Exodus Professional Services
johnny.dedon@exodus.net
www.exodus.net
----- Original Message -----
From: "Masood Malik" <malikm24@hotmail.com>
To: "netsea" <netsea@163.com>; <ccielab@groupstudy.com>
Sent: Friday, April 27, 2001 3:30 PM
Subject: Re: DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY.

> Hi,
>
> It should be :
> access-list 200 permit 0x0404 0x0101
> access-list 200 permit 0x0808 0x0101
>
> reason for this is sap 04 has response sap 05
> and sap 08 has response 09.
>
> Thus to filter them you need the above
>
> regards
> Masood
>
>
> ----- Original Message -----
> From: "netsea" <netsea@163.com>
> To: <ccielab@groupstudy.com>
> Sent: Friday, April 27, 2001 8:45 PM
> Subject: Re: DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY.
>
>
> > hi,
> > why not
> > access-li 200 per 0x0404 0x0000
> > access-li 200 per 0x0808 0x0000
> > "0" is carefull
> > "1" is not carefull
> > is it right?
> > I am confused!!!
> >
> >
> >
> >
> > David,
> > For your idea is allow all SAP for SNA, but the question that Wlias ask
> for
> > SAP 04 and 08 I think it should be
> > access-list 200 permit 0x0404 0x0d0d
> > access-list 200 permit 0x0808 0x0d0d
> >
> > and after that you can apply to remote dlsw statement or interface
depand
> on
> > what thw question ask to do.
> >
> > am I right ?
> > Arthayuth
> > CIP,CCNP,CCDP
> > **Please read:http://www.groupstudy.com/list/posting.html
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Pat Bodin: "RE: VPI/VCI, DLCI, Dialer String"
• Previous message: Umer Khan: "DLSw+ Explorer Queue question"
• Maybe in reply to: Elias Aggelidis: "DLSW+ question : ROUTERX SHOULD SEND SNA TRAFFIC ONLY."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:30:00 GMT-3