From: tom cheung (tkc9789@xxxxxxxxxxx)
Date: Thu Aug 23 2001 - 12:42:37 GMT-3
access-list 200 permit 0xF0F0 0x0101 is the one to use.
>From: Marek Janik <mjanik@mcx.com.pl>
>Reply-To: Marek Janik <mjanik@mcx.com.pl>
>To: ccielab@groupstudy.com
>Subject: lsap access-list
>Date: Thu, 23 Aug 2001 14:56:04 +0200
>
>Hello ccielab,
> In cisco CD I've found example lsap access-list
>! Access list 201 passes NetBIOS frames (command or response)
>access-list 201 permit 0xF0F0 0x0001
>but in TAC
>http://www.cisco.com/warp/public/698/acl200.html
>I've found this
>NetBIOS traffic uses SAP values 0xF0 (for commands) and 0xF1
>(for responses). Typically, network administrators
>use these SAP values to filter this protocol.
>The access list entry depicted below permits NetBIOS
>traffic and denies everything else (remember the implicit "deny all" at the
>end of each ACL):
>access-list 200 permit 0xF0F0 0x0101
>And I don't know what is right ....
>--
>Marek Janik CCDP/CCNP+Security
>Network Integration Department
>MCX sp. z o.o., Towarowa 7A, PL 00-839 Warszawa, POLAND
>+48225484719, fax +48225484682, http://www.mcx.com.pl
>**Please read:http://www.groupstudy.com/list/posting.html
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:56 GMT-3