RE: IPX and ISDN Question

From: Dustin.Yates@xxxxxxxxxxxx
Date: Sun May 12 2002 - 14:01:08 GMT-3

• Next message: Michael Snyder: "RE: Just for a confirmation !! on redistribution"
• Previous message: ying chang: "Re: ospf into rip"
• Maybe in reply to: Denise Donohue: "IPX and ISDN Question"
• Next in thread: George Spahl: "RE: IPX and ISDN Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
I've also seen this one used:

access-list 900 deny any any rip any all
access-list 900 deny any any sap any all
access-list 900 deny any any 457 any all
access-list 900 permit any any all any all

Not being near my lab for testing purposes, any concerns with this
structure?

-----Original Message-----
From: Ahmed Mamoor Amimi [mailto:mamoor@ieee.org]
Sent: Saturday, May 11, 2002 12:29 PM
To: Denise Donohue; ccielab@groupstudy.com
Subject: Re: IPX and ISDN Question

can u make an access-list like mine below and test :

access-list 900 deny 0 any all any 457
access-list 900 deny 0 any all any 451 <---- ncp
access-list 900 deny 0 any all any 452 <---- sap
access-list 900 deny 0 any all any 453 <---- rip

these are explicide hammers to the ipx floods.

or u can try this one too :

access-list 900 deny any any all any rip
access-list 900 deny any any all any sap
access-list 900 deny any any all any 457
access-list 900 permit any any all any all

I guess this will do, definitely

-Mamoor

----- Original Message -----
From: Denise Donohue <fradendon@comcast.net>
To: <ccielab@groupstudy.com>
Sent: Saturday, May 11, 2002 5:41 AM
Subject: IPX and ISDN Question

> Speaking of dumb questions, I'm doing a lab (on Routopia's equipment,
Peter)
> that, in the IPX section, requires you to bring up an ISDN link between 2
> routers only if the serial link between them goes down. And you can only
> use static routing to do this, not snapshot or anything like that.
>
> The routers are running RIP between them. So I don't want RIP or SAP
> updates to bring the link up. According to the Doc CD, the correct acccess
> list to link to the dialer list is this:
>
> access-list 900 deny 0 any all any 457
> access-list 900 deny 0 any sap any sap
> access-list 900 deny 0 any rip any rip
> access-list 900 permit any any all any
>
> I turned off RIP on the ISDN interface, but SAPs still bring the link up,
> even with this access list on the dialer list. The only way I can keep
the
> line down is to add a line denying all broadcasts:
>
> access-list 900 deny any any all 72.ffff.ffff.ffff
>
> Have any of you had success creating an access list, to use with a dialer
> list, that will prevent RIP and SAPs both from being interesting traffic,
> without denying all broadcasts?
>
> --- Denise (a real person) ;-)

• Next message: Michael Snyder: "RE: Just for a confirmation !! on redistribution"
• Previous message: ying chang: "Re: ospf into rip"
• Maybe in reply to: Denise Donohue: "IPX and ISDN Question"
• Next in thread: George Spahl: "RE: IPX and ISDN Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:55 GMT-3