Advanced Configuration and Management Guide
Zones
AppleTalk zones are logical groupings of AppleTalk nodes defined within and across multiple networks as shown in Figure 15.1. For example, the Finance zone comprises two separate networks, 500 and 600. These network numbers are assigned to a specific interface on a router, and nodes within those networks are automatically assigned numbers in that range.
Defining zones for certain workstations and resources on the network allows you to easily permit or deny access to certain devices or information on the network by providing or hiding information about zones to a node or network. This is further explained in the following sections on filtering.
FieldService Zone
AppleTalk | ... |
... |
|
Port 3 |
|
100.50 |
|
Network 300
Apple
Server 
Network 200
Network 400
200.50300.50 400.50
Port 1 | Port 13 Port 15 |
Port 10 | Port 14 |
Marketing Zone
FieldService Zone
Marketing
Zone
... 
AppleTalk
AppleTalk Addresses Assigned to Ports Port 1 = 200.50
Port 3 = 100.50
Port 10 = 600.50
Port 13 = 300.50
Port 14 = 500.50
Port 15 = 400.50
600.50500.50
Network 500
Apple | Finance |
Server | Zone |
... 
AppleTalk
Network 600
Figure 15.1 AppleTalk Zones defined within and across AppleTalk networks
Zone Filtering
Zone filtering allows you to define access for a network and its nodes by defining single permit or deny filters, rather than defining an access list for each node independently.
By eliminating the need to enter separate numbers for each device or network segment, zone filters improve overall system administration of an AppleTalk network. For example, if a new device such as a server or laser printer is added to an existing zone, all users in that zone automatically have access to that device without any additional configuration.
15 - 2