Re: DLSW: SAP lists

From: Fred Ingham (fningham@xxxxxxxxxxxxxxxx)
Date: Sat Aug 25 2001 - 18:10:14 GMT-3

• Next message: Steven Weber: "Re: DLSW: SAP lists"
• Previous message: Ravi: "OT: Lab Swap"
• Maybe in reply to: Devender Singh: "DLSW: SAP lists"
• Next in thread: Steven Weber: "Re: DLSW: SAP lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Devender: Access-list is ok for a destination SAP of 0C and any SNA
source SAP. But as written it denies all SAPs. A access-list 200
permit 00 00 ff ff statement after the deny would allow other SAPs. If
the users are on R1 token 0, I would use an output-lsap-list rather than
an input-lsap-list.

BTW SAP 0x0C is the default local SAP for DSPU hosts.

Cheers, Fred.

Devender Singh wrote:
>
> I have two routers R1 and R2.
>
> Topology:( ring - r1-r2-ring)
>
> O----- R1 --------R2 ----O
>
> R1 and R2 are configured as dlsw peers.
>
> Task: configure R1 to block users from accessing SAP with a value of 012.
>
> My solution to this is:
>
> !
> interface TokenRing0
> source-bridge input-lsap-list 200
> !
> access-list 200 deny 0x0C00 0x010D
> !
>
> Question: Do you agree with me, and why.
>
> rgds
>
> Devender Singh
> BE(Hons), CCNP
> IP Solution Specialist
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html

• Next message: Steven Weber: "Re: DLSW: SAP lists"
• Previous message: Ravi: "OT: Lab Swap"
• Maybe in reply to: Devender Singh: "DLSW: SAP lists"
• Next in thread: Steven Weber: "Re: DLSW: SAP lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:31:58 GMT-3