stigall@ucs.indiana.edu (STIGALL ,JOHN ,BAC) (08/21/90)
Hello, Here at Indiana Univ we are having difficulty filtering out SNAP format packets from Phase II devices on our network. The environment is IP routed, Appletalk Phase I routed, all else bridged. In order to test out Phase II devices/gateways, we would like to be able to isolate by packet filtering the Phase II packets. Any Ideas? John Stigall Indiana Univ.
SHERWOOD@AC.DAL.CA (John Sherwood) (08/21/90)
John: >Here at Indiana Univ we are having difficulty filtering out SNAP format >packets from Phase II devices on our network. The environment is IP routed, >Appletalk Phase I routed, all else bridged. In order to test out Phase II >devices/gateways, we would like to be able to isolate by packet filtering >the Phase II packets. Any Ideas? > >John Stigall >Indiana Univ. We were faced with the same problem. The only solution we could come up with was to permit each protocol we wanted and then to deny all others. Since we only needed to bridge DECnet, LAT and LAD, our access list was: access-list 201 permit 0x6000 0x000f access-list 201 permit 0x8041 0x0000 access-list 201 deny 0x0000 0xffff Hope this helps. John Sherwood Dalhousie University Halifax, Nova Scotia