We have a 3662 router with an ATM card in it and 3 ethernet ports. The ATM had about 100 sub interfaces on it, and most of the regional sites are allowed to connect to just one of the networks on the ethernet side (say port 1). We have 1 ATM subinterface which maps to the second ethernet port, and another ATM subinterface maps to the third ethernet port.
We could consider it as three different customers using the same device to help describe the network layout and requirements. Traffic from one customer should not be able to get to the other customers network and vice versa. The ATM connections are either to frame circuits or to a layer 2 LAN service.
OSPF is running on the box on all subinterfaces to provide the routing informaiton to the regional sites.
We were thinking of using access lists to prevent traffic from being crossed over from network to network and wanted to see if there might be a better way of doing this.
An example of a layer 2 LAN service sub int on the ATM is as follows
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...