Re: verification on dmac

From: Kevin Baumgartner (kbaumgar@xxxxxxxxx)
Date: Fri Feb 02 2001 - 02:15:09 GMT-3

• Next message: Robert DeVito: "cat5 broadcast"
• Previous message: Robert DeVito: "RE: What takes precedence, IP forward protocol or ACL?"
• Maybe in reply to: Robert DeVito: "verification on dmac"
• Next in thread: Bernard Dunn: "Re: verification on dmac"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
 So keep in mind that if this is ethernet where this mac address is
coming from it get converted to non-canonical (Token-ring format) by
DLSW. If Token-ring than no conversion required.

 So for ethernet 0020.1234 >>> 0004.482c (non-canonical)

 access-list 701 deny 0004.482c.0000 0000.0000.ffff
 access-list 701 permit 0000.0000.0000 ffff.ffff.ffff

 and for Token-ring it will be exactly what you have.

 Kevin

>
> I came across an scenerio that require me to deny mac address 0020.1234.XXXX
> and permit any thing else
>
> Would the correct answer be:
>
> !
> dlsw local-peer peer-id 192.168.12.1
> dlsw remote-peer 0 192.168.4.5 dmac-output-list 701
> !
> access-list 701 deny 0020.1234.0000 0000.0000.ffff
> access-list 701 permit 0000.0000.0000 ffff.ffff.ffff
> !
>
> thank you,
> Robert

• Next message: Robert DeVito: "cat5 broadcast"
• Previous message: Robert DeVito: "RE: What takes precedence, IP forward protocol or ACL?"
• Maybe in reply to: Robert DeVito: "verification on dmac"
• Next in thread: Bernard Dunn: "Re: verification on dmac"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:28:33 GMT-3