DLSw/layer 3 filering

From: James Coleman (colemanjc@email.com)
Date: Mon Sep 16 2002 - 20:34:03 GMT-3

• Next message: Garcia, Eduardo A.: "San Jose - Lab Swap Dates."
• Previous message: Jay: "Re: OSPF summary-address and redistribution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

. In a practice lab, the requirement is to deny all devices with a source
mac-address range of
2222.4400.0000 from obtaining access to the rest of the network. This mac
address would be coming in from a Token Ring interface.

DLSw+ running, but have not included it in the example below/

The only way I know how to do this as follows:

Interface Tokenring0
  source-bridge input-address-list 701

access-list 701 deny 2222.4400.0000 0000.00ff.ffff
access-list 701 permit 0000.0000.0000 ffff.ffff.ffff

Or

Interface Tokenring0
  access-expression input smac(701)

access-list 701 deny 2222.4400.0000 0000.00ff.ffff
access-list 701 permit 0000.0000.0000 ffff.ffff.ffff

However I have been told there is a third way of doing this, and now here
is
the confusing part, by using a Layer 3 filter instead of Layer 2!

--

• Next message: Garcia, Eduardo A.: "San Jose - Lab Swap Dates."
• Previous message: Jay: "Re: OSPF summary-address and redistribution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Mon Oct 07 2002 - 07:43:54 GMT-3