RE: Netbios host Filters

From: Waters, Kivas (UK72) (Kivas.Waters@xxxxxxxxxxxxx)
Date: Fri Nov 23 2001 - 21:30:15 GMT-3

• Next message: Peter Whittle: "Specification for Accesspro PCBUS i/f"
• Previous message: Waters, Kivas (UK72): "RE: Bridging"
• Maybe in reply to: Daniel Hong: "Netbios host Filters"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Good question, finding Cisco web site documentation to confirm the exact
operation of these commands seems hard to find! If there is anyone out
there with a reference url please respond.

My understanding of the NetBIOS protocol and the commands below is the
following. The NetBIOS(NetBEUI) L3/4 protocol is non-routable and thus
enables connectivity via an L2 process, MAC/LLC layer. It discovers peers
with which it needs to establish a session with by using broadcasts.
Considering this I suspect that the NetBIOS L3/4 protocol does not have both
a source and destination L3 or L4 address mapping in the protocol header.
>From this I reason that if you ever wanted to filter NetBIOS names within
NetBIOS frames, the name filtered would always only correspond to the
destination NetBIOS host.

I suggest that ...

"int e0:
netbios input-access-filter host cciewannabe1
netbios output-access-filter host cciewannabe2
...<config omitted>...
!
int e1
...<config omitted>...
!
netbios access-list host cciewannabe1 permit ccie
netbios access-list host cciewannabe1 deny .*
netbios access-list host cciewannabe2 deny givingup
netbios access-list host cciewannabe2 permit .*"

...will allow only connectivity from any hosts hanging off e0 wanting to
connect to NetBIOS destination host "ccie" hanging off e1 for example. It
will also prevent any NetBIOS host on say e1 to connect to the destination
host "givingup" which is hanging off e0.

What do you guys think?

regards

Ki

------------------------------------------------

-----Original Message-----
From: Daniel Hong [mailto:Daniel.Hong@nec.com.au]
Sent: 23 November 2001 07:11
To: ccielab@groupstudy.com
Subject: Netbios host Filters

dlsw gurus

When I apply a netbios host access-list to a interface,

netbios input-access-filter host xxx
netbios output-access-filter host xxx

will it check source host name in the packet, or destination host name in
the packet??? I checked COD, the explanation wasn't very clear

Also, same things dlsw remote peer statement,

dlsw remote-peer list-number tcp ip-address
with
host-netbios-out host-list-name

Thanks in Advance

Daniel

• Next message: Peter Whittle: "Specification for Accesspro PCBUS i/f"
• Previous message: Waters, Kivas (UK72): "RE: Bridging"
• Maybe in reply to: Daniel Hong: "Netbios host Filters"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jun 21 2002 - 06:45:21 GMT-3