RE: Netbios access lists

From: Mas Kato (loomis_towcar@xxxxxxxxxxxxxx)
Date: Mon Apr 15 2002 - 09:22:17 GMT-3

• Next message: Kirby, Ron: "RE: DLSW Questions (Fixed Typo's)"
• Previous message: steven.j.nelson@xxxxxx: "RE: ISL Trunk on 2900"
• Maybe in reply to: Lupi, Guy: "Netbios access lists"
• Next in thread: Lupi, Guy: "RE: Netbios access lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
[demime could not interpret encoding binary - treating as plain text]
Guy,

This is one of those "it depends" answers.

The station names in NetBIOS access lists reference the source name field for N
etBIOS commands 00 and 01 (ADD_GROUP_NAME_QUERY and ADD_NAME_QUERY) and the des
tination name field for NetBIOS commands 08, 0A, and 0E (DATAGRAM, NAME_QUERY,
and NAME_RECOGNIZED).

Not all NetBIOS packets are filtered, only the select few that are related to c
lient/server session startup.

Check the IOS config guides under SRB and Securing the SRB Network for more inf
o if needed.

Regards,

Mas Kato
https://ecardfile.com/id/mkato

> "Lupi, Guy" <Guy.Lupi@eurekaggn.com> "'ccielab@groupstudy.com'" <ccielab@grou
pstudy.com> Netbios access listsDate: Sun, 14 Apr 2002 16:47:15 -0400
>Reply-To: "Lupi, Guy" <Guy.Lupi@eurekaggn.com>
>
>This question is about netbios filtering on an interface. When applying a
>netbios access list to an interface, you can specify input or output. My
>question is, how do you establish the context of the access list? Say I had
>the following:
>
>netbios access-list host server permit server*
>!
>interface ethernet 0
>netbios input-access-filter host server
>!
>interface ethernet 1
>netbios output-access-filter host server
>
>On ethernet 0, that list would do one of the following, and on ethernet 1 it
>would do the opposite, this is where my question lies. Which one is it?
>1. Permit only stations that have the name server followed by any number of
>characters to go anywhere. This would be the case if the access list
>specified the source netbios name.
>2. Permit any station to send information destined for a host that had the
>name server followed by anything. This would be the case if the access list
>specified the destination netbios name.
>
>Is the list always specifying the destination name, or the source name to be
>allowed or denied? I have looked on CCO with no luck, I would appreciate any
>help. Thanks.

• Next message: Kirby, Ron: "RE: DLSW Questions (Fixed Typo's)"
• Previous message: steven.j.nelson@xxxxxx: "RE: ISL Trunk on 2900"
• Maybe in reply to: Lupi, Guy: "Netbios access lists"
• Next in thread: Lupi, Guy: "RE: Netbios access lists"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:58:08 GMT-3