Cisco Systems BC-109 manual Filter Frames by Vendor Code, Filter Source Addresses

Page 28

Secure the SRB Network

To enable filtering on input or output, use one of the following commands in interface configuration mode:

Command

Purpose

source-bridge input-lsap-list access-list-number

Enable filtering of IEEE

 

802-encapsulated packets on input by

 

type code.

 

 

source-bridge output-lsap-list access-list-number

Enable filtering of IEEE

 

802-encapsulated packets on output

 

by type code.

 

 

You can filter SNAP-encapsulated packets on either input or output. The access list you specify is the one you created that includes the protocol type codes.

To enable filtering on input or output, use one of the following commands in interface configuration mode:

Command

Purpose

source-bridge input-type-list access-list-number

Filter SNAP-encapsulated packets on

 

input by type code.

 

 

source-bridge output-type-list access-list-number

Filter SNAP-encapsulated frames on

 

output by type code.

 

 

Filter Frames by Vendor Code

To configure administrative filters by vendor code or address, define access lists that look for Token Ring addresses or for particular vendor codes for administrative filtering. To do so, use the following command in global configuration mode:

Purpose

Command

access-listaccess-list-number {permit deny} address

Configure vendor code access lists.

mask

 

 

 

Filter Source Addresses

To configure filtering on IEEE 802 source addresses, assign an access list to a particular input interface for filtering the Token Ring or IEEE 802 source addresses. To do so, use the following command in interface configuration mode:

Command

Purpose

source-bridge input-address-list access-list-number

Enable filtering on IEEE 802 source

 

addresses.

 

 

Filter Destination Addresses

To configure filtering on IEEE 802 destination addresses, assign an access list to a particular output interface. To do so, use the following command in interface configuration mode:

Command

Purpose

source-bridge output-address-list access-list-number

Enable filtering on IEEE 802

 

destination addresses.

 

 

BC-136Bridging and IBM Networking Configuration Guide

Page 27 Page 29
Image 28
Page 27 Page 29
Contents Configuring Source-Route Bridging SRB Configuration Task ListConfigure Source-Route Bridging Configure a Dual-Port BridgeConfigure a Multiport Bridge Using a Virtual Ring Multiple Dual-Port BridgesSource-bridge ring-group ring-group Define a Ring Group in SRB ContextNo source-bridge ring-group ring-group Configure SRB over Fddi Enable SRB and Assign a Ring Group to an InterfaceInterface fddi slot/port Source-bridge route-cache cbusConfigure Fast-Switching SRB over Fddi Configure SRB over Frame RelayEnable the Automatic Spanning-Tree Function Limit the Maximum SRB Hops Configure Bridging of Routed Protocols Enable Use of the RIFConfigure a Static RIF Entry Configure the RIF Timeout IntervalOverview of SR/TLB Following notes and caveats apply to all uses of SR/TLB Enable Bridging between Transparent Bridging and SRB Disable Fast-Switched SR/TLBEnable Translation Compatibility with IBM 8209 Bridges No source-bridge transparent ring-group fastswitchEnable Token Ring LLC2-to-Ethernet Conversion Enable 0x80d5 ProcessingEnable Standard Token Ring LLC2-to-Ethernet LLC2 Conversion Source-bridge sap-80d5 dsapConfigure NetBIOS Support Specify Timeout and Enable NetBIOS Name Caching Source-bridge proxy-netbios-onlyConfigure the NetBIOS Cache Name Length Enable NetBIOS ProxyingCreate Static Entries in the NetBIOS Name Cache Specify Dead-Time Intervals for NetBIOS PacketsNetbios name-cache query-timeout seconds Configure LNM SupportNetbios name-cache recognized-timeout seconds LNM Linking to a Source-Route Bridge on Each Local Ring How a Router Works with LNM LAN Network Manager Monitoring and TranslatingDisable LNM Functionality Disable Automatic Report Path Trace Function Enable Other LRMs to Change Router ParametersEnable LNM Servers Apply a Password to an LNM Reporting LinkChange Reporting Thresholds Monitor LNM Operation Change an LNM Reporting IntervalLnm softerr milliseconds Configure NetBIOS Access Filters Using Station Names Configure NetBIOS Access FiltersSecure the SRB Network Configure NetBIOS Access Filters Using a Byte Offset Netbios access-list host name permit deny patternNetbios access-list bytes name permit deny offset Netbios input-access-filter bytes nameNetbios output-access-filter bytes name Configure Administrative Filters for Token Ring TrafficFilter Frames by Protocol Type Filter Source Addresses Filter Frames by Vendor CodeFilter Destination Addresses Access Expression Example Configure Access Expressions Optimize Access ExpressionsAlter Access Lists Used in Access Expressions Tune the SRB NetworkEnable or Disable the Source-Route Fast-Switching Cache Establish the Connection Timeout Interval Enable or Disable the SSEOptimize Explorer Processing Controlling Explorer Storms in Redundant Network Topologies Establish SRB Interoperability with TI MAC Firmware Configure Proxy ExplorersMac-address ieee-address Report Spurious Frame-Copied Errors Monitor and Maintain the SRB NetworkSRB Configuration Examples Source-bridge tcp-queue-max numberDual-Port Source-Route Bridge Configuration Basic SRB with Spanning-Tree Explorers ExampleOptimized Explorer Processing Configuration Example SRB-Only ExampleSRB and Routing Certain Protocols Example Multiport SRB ExampleConfiguration for Router a SRB with Multiple Virtual Ring Groups ExampleSRB over Fddi Configuration Examples SRB over Fddi Fast-Switching ExampleConfiguration for Router B Router aSRB over Frame Relay Configuration Example Frad Using SRB over Frame Relay to Connect to a Cisco RouterConfiguration of Router a Configuration on Router BConfiguration on Router C Adding a Static RIF Cache Entry ExampleAdding a Static RIF Cache Entry for a Two-Hop Path Example SR/TLB for a Simple Network ExampleBC-154Bridging and IBM Networking Configuration Guide SR/TLB with Access Filtering Example Example of a Bit-Swapped AddressNetBIOS Support with a Static NetBIOS Cache Entry Example Specifying a Static EntryWayfarer# show lnm config LNM for a Simple Network ExampleLNM for a More Complex Network Example NetBIOS Access Filters Example Filtering Bridged Token Ring Packets to IBM Machines Example Shows a router connecting four Token Rings Creating Access Filters Example Following access expression would resultAccess Filters Example Fast-Switching ExampleAutonomous Switching Example
Top Page Image Contents