From: Bill Hill (bhill@xxxxxxxxxx)
Date: Fri May 10 2002 - 10:54:39 GMT-3
Correct me if I am wrong but you will effectively block all Netbios in either d
irection since the mask specified is 0x0101. The issue is that R2 will be able
to send Netbios requests/info across the WAN to R1 and R1 will accept this inf
ormation, however, R1 will not send this information/replies back to R2, effect
ively cutting off all communication with respect to Netbios.
In a scenario, this is a case where you may need to read between the lines so t
o speak. If a question states that you want to prevent Netbios traffic from cr
ossing the WAN from R1, then you would want to apply the filter on R1. You wou
ld get the same results if you put the filter on R2 except that you wouldn't me
et the requirements of the question. I don't know if this is the situation or
not but it it something that the scenarios try to trick you on.
HTH
-Bill
#8882.
-----Original Message-----
From: Sam.MicroGate@usa.telekom.de [mailto:Sam.MicroGate@usa.telekom.de]
Sent: Friday, May 10, 2002 8:59 AM
To: tsabry@slb.com; Sam.MicroGate@usa.telekom.de; ccielab@groupstudy.com
Subject: RE: Filtering direction
Hello Tarek,
In the example below I talked about netbios traffic "F0F0". So let me
rephrase the questions again because I am still confuse. With the
configuration below:
1- Can a netbios host connected to R1 from the LAN side (either TR or
Ethernet) reach a netbios host connected to R2?
2- Can a netbios host connected to R2 from the LAN side (either TR or
Ethernet) reach a netbios host connected to R1?
Thanks
-----Original Message-----
From: Tarek Sabry [mailto:tsabry@houston.sns.slb.com]
Sent: Thursday, May 09, 2002 6:27 PM
To: Sam.MicroGate@usa.telekom.de; ccielab@groupstudy.com
Subject: RE: Filtering direction
Elsayed
You are not blocking netbios "hosts". You are blocking the netbios service
from being sent over your DLSW peer going to 2.2.2.2, so 2.2.2.2 can reach
any SNA hosts but no netbios services on 1.1.1.1. In other words, to answer
your question, ALL netbios hosts will be blocked.
Do you have Windows station connected to your T/R interfaces? If so you can
see how this works. Otherwise, you can search for those dspu commands that
you can configure on additional routers configured as hosts. I am not sure
if that holds for Netbios as well as SNA though.
HTH
Tarek
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Sam.MicroGate@usa.telekom.de
Sent: Thursday, May 09, 2002 2:43 PM
To: ccielab@groupstudy.com
Subject: Filtering direction
Hello group,
I have the following scenario:
Netbios_hosts--R1----------------------R2----Netbios_hosts
R1 config:
dlsw local-peer peer-id 1.1.1.1
dlsw remote-peer 0 tcp 2..2.2.2 lsap-output-list 200
access-list 200 deny 0xF0F0 0x0101
access-list 200 permit any
R2 config:
dlsw local-peer peer-id 2.2.2.2
dlsw remote-peer 0 tcp 1.1.1.1
Regarding the above config: which netbios hosts will be blocked from
reaching the other side? or both won't be able to reach each other. I am not
able to verify this in the lab. Each time I have different result. Thanks
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:54 GMT-3