01-27-2004 08:32 AM - edited 03-02-2019 01:10 PM
Need some help. We currently have 8 VLAN's coming in on one interface and they each run their own appletalk zone. I would like to prevent each zone from being seen in the other subnets. Do I need to stop it on the subinterface or in the main router config? Thanks!
01-27-2004 08:50 AM
You will need to create the zone filters globally, but then you will apply them to each individual sub-interface.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fatipx_c/2cfapple.htm#33483
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fatipx_c/2cfapple.htm#80206
01-27-2004 04:13 PM
Thank you for the reply, it got me started. Here is the problem I am running into now. I want one other zone to be able to see this zone. How do I set that? Is it an in or out apply or both? Here is the current access list:
access-list 601 permit zone RHS
access-list 601 deny additional-zones
access-list 601 permit cable-range 300-310
access-list 601 deny other-access
I would like to be able to see into the RHS zone from the CR zone with cable range 380-390.
Thanks!
02-10-2004 08:29 AM
Is that zone only associated with that one cable range? If so then try applying the list as an outbound list on the interface associated with the CR zone and cable range 380-390.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide