Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 1999, Cisco Systems, Inc. 11-1 Chapter 11 Configuring Novell IPX.

Published byWendy Arnold Modified over 8 years ago

Similar presentations

Presentation on theme: "© 1999, Cisco Systems, Inc. 11-1 Chapter 11 Configuring Novell IPX."— Presentation transcript:

1 © 1999, Cisco Systems, Inc. 11-1 Chapter 11 Configuring Novell IPX

2 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-2 Upo n completion of this chapter, you will be able to perform the following tasks: Describe basic IPX operation Determine the required IPX network number and encapsulation type for a given interface Enable the Novell IPX protocol Verify IPX connectivity Configure and monitor IPX Access Lists and SAP traffic filters Objectives

3 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-3 NetWare File Server NetWare File Server Cisco Routers in NetWare Networks

4 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-4 Novell NetWare Protocol Stack 1 2 3 4 5 6 7 Media Access Protocols (Ethernet, Token Ring, WAN, others) Physical Data Link Network Session Transport Presentation Application Novell NetWare Protocols OSI Reference Model IPX (Internetwork Packet Exchange) SPX SA P RIP NLSP NETBIOSAPPLICATIONS NCP

5 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-5 Address is 80 bits (network.node) Interface MAC address is part of logical address Multiple LAN encapsulations per interface Default routing protocol is IPX RIP Novell services are advertised using SAP NetWare clients find servers with GNS packets Key Novell NetWare Features

6 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-6 0000.0c56.de33 Novell IPX Addressing E0 E1 S0 48 bits (from MAC) Node 0000.0c56.de34 0000.0c56.de33

7 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-7 Novell IPX Addressing 4a1d.0c56.de33 E0 E1 S0 48 bits (from MAC) Network.Node 3f.0c56.de34 2c.0c56.de33 Network 4a1d Network 3f Network 2c Up to 32 bits

8 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-8 Basic NetWare Operation NW File Server

9 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-9 Basic NetWare Operation (cont.) NW File Server 0080.C712.3456-Layer2 Mac NIC

10 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-10 Basic NetWare Operation (cont.) NW File Server 1a.0080.C712.3456-Layer3 Net NIC

11 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-11 NW File Server Basic NetWare Operation (cont.) 1a.0080.C712.3456-Layer3 Net NetWare Services 2b.0000.0000.0001-Internal Net NIC

12 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-12 - NW Software Router Basic NetWare Operation (cont.) 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 NIC

13 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-13 Basic NetWare Operation (cont.) 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 2b 1a... 2b 1a... NIC Routing Table

14 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-14 Basic NetWare Operation (cont.) File Server - 4 Print Server - 47 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 2b 1a... 2b 1a... Services Table 4 47 …... 4 47 …... NIC Routing Table

15 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-15 Basic NetWare Operation (cont.) File Server - 4 Print Server - 47 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 2b 1a... 2b 1a... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF NIC Routing Table

16 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-16 1a.0080.C712.3456 NetWare Services 2b 1a... 2b 1a... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF 0000.0C12.3456 - Layer2 Mac e0 NIC Routing Table 2b.0000.0000.0001 Basic NetWare Operation (cont.)

17 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-17 Network and Encapsulation must match Network and Encapsulation must match 1a.0080.C712.3456 NetWare Services 2b 1a... 2b 1a... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF 1a. 0000.0C12.3456 - Layer3 Net e0 s0 NIC Routing Table 2b.0000.0000.0001 Basic NetWare Operation (cont.)

18 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-18 Network and Encapsulation must match Network and Encapsulation must match 1a.0080.C712.3456 NetWare Services 2b 1a... 2b 1a... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF 1a. 0000.0C12.3456 - Layer3 Net e0 s0 1b. 0000.0C12.3456 Routing Table 1a 1b 2b... 1a 1b 2b... NIC Routing Table 2b.0000.0000.0001 Basic NetWare Operation (cont.)

19 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-19 1a.0080.C712.3456 NetWare Services 2b 1a 1b... 2b 1a 1b... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF 1a. 0000.0C12.3456 e0 s0 1b. 0000.0C12.3456 Routing Table 1a 1b 2b... 1a 1b 2b... NIC Routing Table 2b.0000.0000.0001 Basic NetWare Operation (cont.)

20 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-20 1a.0080.C712.3456 NetWare Services 2b 1a 1b... 2b 1a 1b... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF e0 s0 Routing Table 1a 1b 2b... 1a 1b 2b... 4 47 …... 4 47 …... Services Table NIC Routing Table 1a. 1b. 2b.0000.0000.0001 Basic NetWare Operation (cont.)

21 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-21 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 2b 1a 1b... 2b 1a 1b... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF e0 s0 Routing Table 1a 1b 2b... 1a 1b 2b... 4 47 …... 4 47 …... Services Table NW Client NIC 1a.0010.5A12.3456 GNS Routing Table 1a. 1b. Basic NetWare Operation (cont.)

22 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-22 Routing Table 1a.0080.C712.3456 NetWare Services 2b.0000.0000.0001 (IPX Internal Network) 2b 1a 1b... 2b 1a 1b... Services Table 4 47 …... 4 47 …... Periodic Broadcasts on 1a.FFFF.FFFF.FFFF e0 s0 Routing Table 1a 1b 2b... 1a 1b 2b... 4 47 …... 4 47 …... Services Table NW Client NIC 1a.0010.5A12.3456 GNS GNS Resp 1a. 1b. Basic NetWare Operation (cont.)

23 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-23 Determining the IPX Network Number Ask the NetWare administrator

24 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-24 Determining the IPX Network Number cdp Ask the NetWare administrator Use Cisco IOS commands to determine the IPX network number on a neighbor Cisco router

25 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-25 Determining the IPX Network Number Ask the NetWare administrator Use Cisco IOS commands to determine the IPX network number a neighbor Cisco router Use NetWare command to check on the NetWare file server/router NetWare config cdp

26 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-26 Ethernet_802.3 (default for NetWare 3.11 or earlier) 802.3 IPX Multiple Novell Encapsulations Four types of Ethernet framing Novell Name Framing Structure

27 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-27 Ethernet_802.2 (default for NetWare 3.12 and later ) 802.3802.2 LLCIPX Ethernet_802.3 (default for NetWare 3.11 and earlier) 802.3 IPX Multiple Novell Encapsulations Four types of Ethernet framing Novell Name Framing Structure

28 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-28 Ethernet_802.2 (default for NetWare 3.12 and later ) 802.3802.2 LLCIPX Ethernet_802.3 (default for NetWare 3.11 and earlier) 802.3 IPX Multiple Novell Encapsulations Four types of Ethernet framing Ethernet_II Ethernet IPX Novell Name Framing Structure

29 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-29 Ethernet_802.2 (default for NetWare 3.12 and later versions ) 802.3802.2 LLCIPX Ethernet_SNAP 802.3802.2 LLCSNAPIPX Ethernet_802.3 (default for NetWare 3.11 and earlier versions) 802.3 IPX Multiple Novell Encapsulations Ethernet_II Ethernet IPX Novell Name Framing Structure Four types of Ethernet framing

30 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-30 Cisco Encapsulation Types Novell IPX Name Cisco IOS Name Ethernet Token Ring FDDI FDDI_SNAP FDDI_802.2 FDDI_Raw Ethernet_802.3 Ethernet_802.2 Ethernet_II Ethernet_SNAP Token-Ring Token-Ring_SNAP

31 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-31 Novell IPX Name Cisco IOS Name Token-Ring Token-Ring_SNAP Ethernet Token Ring FDDI FDDI_SNAP FDDI_802.2 FDDI_Raw Ethernet_802.3 Ethernet_802.2 Ethernet_II Ethernet_SNAP Cisco Encapsulation Types Specify encapsulation when you configure IPX networks novell-ether sap arpa snap sap snap sap novell-fddi

32 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-32 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0 S1 E1 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

33 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-33 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0 S1 E1 d100 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

34 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-34 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0hdlc S1 E1 d100 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

35 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-35 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0hdlc S1 E1 c0b0 d100 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

36 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-36 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0hdlc S1hdlc E1 c0b0 d100 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

37 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-37 Written Exercise: IPX Parameter Planning Encapsulation Network Address R3 Interface Name S0hdlc S1hdlc E1b1b0 c0b0 d100 Write the IPX addresses and encapsulation types for R3 S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 R2 R1

38 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-38 Write the IPX addresses and encapsulation types for R3 Encapsulation Network Address R3 Interface Name S0hdlc S1hdlc E1 novell-ether Written Exercise: IPX Parameter Planning S0 hdlc Network b001 E0 SAP E1 S1 S1 hdlc S0 Network c0b0 Network d100 Network b1b0 E0 novell-ether R3 R4 E1 b1b0 c0b0 d100 R2 R1

39 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-39 Novell Uses IPX RIP for Routing Uses ticks (about 1/18 sec.) and hop count (maximum of 15 hops) RIP broadcasts routing information to neighbor routers every 60 seconds, by default SAP broadcasts NetWare services information to neighbor routers every 60 seconds, by default RIP SAP Tables RIP SAP Tables RIP SAP Tables RIP SAP Tables DCBA

40 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-40 Server advertises file service SAP packets advertise all NetWare network services Service Advertising Protocol (SAP) Server advertises print service Server advertises file service Client A

41 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-41 SAP SAP packets advertise all NetWare network services Can add excessive broadcast traffic to the network Server advertises print service Server advertises file service Router A listens to SAPs SAP SAP table Client A Service Advertising Protocol (SAP)

42 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-42 Get Nearest Server Protocol (GNS) File Server NetWare Client

43 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-43 Get Nearest Server Protocol (GNS) File Server NetWare Client GNS request GNS is a broadcast from a client needing a server

44 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-44 Get Nearest Server Protocol (GNS) File Server NetWare Client GNS request GNS is a broadcast from a client needing a server NetWare server and Cisco router get this SAP packet

45 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-45 Get Nearest Server Protocol (GNS) GNS is a broadcast from a client needing a server NetWare server and Cisco router get this SAP packet NetWare server provides GNS response File Server NetWare Client GNS request GNS reply

46 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-46 Novell IPX Configuration Tasks Global configuration IPX routing RIP IPX

47 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-47 Novell IPX Configuration Tasks Global configuration IPX routing Load sharing RIP IPX

48 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-48 RIP Network 9e encap arpa Network 4a encap snap IPX Novell IPX Configuration Tasks Global configuration IPX routing Load sharing Interface configuration Network numbers Encapsulation type

49 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-49 Novell IPX Global Configuration ipx routing [ node ] Router(config)# Enables Novell IPX routing

50 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-50 Router(config)# ipx maximum-paths paths Novell IPX Global Configuration Configures round-robin load sharing over multiple equal metric paths Default = 1 Router(config)# ipx routing [ node ] Enables Novell IPX routing

51 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-51 Novell IPX Interface Configuration Router(config-if)# ipx network network [ encapsulation encapsulation type ] Enables IPX routing on the interface Assigns IPX network number Selects optional encapsulation type

52 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-52 NetWare Subinterfaces FS1 NW 3.11 FS2 NW 4.11 e0.1 NIC 1a.0080.C712.3456 1b.0080.C712.3457 Ethernet_802.3 Ethernet_802.2 1a - novell-ether 1b - sap e0.2

53 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-53 Novell IPX Interface Configuration Router(config-if)# ipx network network [ encapsulation encapsulation-type ] [ secondary ] Assign primary and secondary network number and encapsulation Router(config)# interface type number.subinterface-number Specify a subinterface, then enable IPX routing with encapsulation type OR Router(config-subif)# ipx network network [ encapsulation encapsulation type ]

54 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-54 Novell IPX Configuration Example A Network 9e Network 1 E0 E1 S0 Network 4a Network 6c S1 9e.0800.4313.df56 Encapsulation = novell-ether 4a.1234.0000.abcd Encapsulation = sap 6c.0800.1213.13de Encapsulation = sap Network 3 B C

55 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-55 ipx routing ipx maximum-paths 2 interface ethernet 0.1 ipx network 9e encapsulation novell-ether interface ethernet 0.2 ipx network 6c encapsulation sap interface ethernet 1 ipx network 4a encapsulation sap interface serial 0 ipx network 1 Interface serial 1 ipx network 3 Novell IPX Configuration Example A Network 9e Network 1 E0 E1 S0 Network 4a Network 6c S1 9e.0800.4313.df56 Encapsulation = novell-ether 4a.1234.0000.abcd Encapsulation = sap 6c.0800.1213.13de Encapsulation = sap Network 3 B C

56 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-56 Verifying IPX Operation show ipx interface show ipx route show ipx servers show ipx traffic Monitoring Commands

57 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-57 Verifying IPX Operation show ipx interface show ipx route show ipx servers show ipx traffic Monitoring Commands Troubleshooting Commands debug ipx routing activity debug ipx sap activity ping ipx

58 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-58 Monitoring the Status of an IPX Interface wg_ro_a#show ipx interface e0 Ethernet0 is up, line protocol is up IPX address is ABC.00e0.1e5d.ae2f, NOVELL-ETHER [up] Delay of this IPX network, in ticks is 1 throughput 0 link delay 0 IPXWAN processing not enabled on this interface. IPX SAP update interval is 60 seconds IPX type 20 propagation packet forwarding is disabled Incoming access list is not set Outgoing access list is not set IPX helper access list is not set SAP GNS processing enabled, delay 0 ms, output filter list is not set SAP Input filter list is not set SAP Output filter list is not set SAP Router filter list is not set Input filter list is not set Output filter list is not set Router filter list is not set Netbios Input host access list is not set Netbios Input bytes access list is not set Netbios Output host access list is not set Netbios Output bytes access list is not set Updates each 60 seconds aging multiples RIP: 3 SAP: 3 SAP interpacket delay is 55 ms, maximum size is 480 bytes

59 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-59 Monitoring IPX Routing Tables wg_ro_a#show ipx route Codes: C - Connected primary network, c - Connected secondary network S - Static, F - Floating static, L - Local (internal), W - IPXWAN R - RIP, E - EIGRP, N - NLSP, X - External, A - Aggregate s - seconds, u - uses, U - Per-user static 2 Total IPX routes. Up to 1 parallel paths and 16 hops allowed. No default route known. C ABC (NOVELL-ETHER), Et0 R DEF [02/01] via ABC.00e0.1e5d.c860, 40s, Et0

60 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-60 Monitoring IPX Servers wg_ro_a#show ipx server Codes: S - Static, P - Periodic, E - EIGRP, N - NLSP, H - Holddown, + = detail U - Per-user static 2 Total IPX Servers Table ordering is based on routing and server info Type Name Net Address Port Route Hops Itf p 4 fs1 11.0000.0000.0001:0451 4/03 4 Et0 p 4 fs2 21.0000.0000.0001:0451 4/03 4 Et0

61 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-61 Monitoring IPX Traffic wg_ro_a#show ipx traffic System Traffic for 0.0000.0000.0001 System-Name: wg_ro_a Rcvd: 15 total, 0 format errors, 0 checksum errors, 0 bad hop count, 0 packets pitched, 15 local destination, 0 multicast Bcast: 13 received, 6 sent Sent: 6 generated, 0 forwarded 0 encapsulation failed, 0 no route SAP: 1 Total SAP requests, 0 Total SAP replies, 0 servers 1 SAP general requests, 0 ignored, 0 replies 0 SAP Get Nearest Server requests, 0 replies 0 SAP Nearest Name requests, 0 replies 0 SAP General Name requests, 0 replies 0 SAP advertisements received, 0 sent 0 SAP flash updates sent, 0 SAP format errors RIP: 1 RIP requests, 0 ignored, 0 RIP replies, 2 routes 13 RIP advertisements received, 0 sent 0 RIP flash updates sent, 0 RIP format errors Echo: Rcvd 0 requests, 0 replies Sent 0 requests, 0 replies 0 unknown: 0 no socket, 0 filtered, 0 no helper 0 SAPs throttled, freed NDB len 0 Watchdog: 0 packets received, 0 replies spoofed

62 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-62 wg_ro_a#debug ipx routing activity IPX routing debugging is on IPXRIP: positing full update to 3010.ffff.ffff.ffff via Ethernet0 (broadcast) IPXRIP: positing full update to 3000.ffff.ffff.ffff via Ethernet1 (broadcast) IPXRIP: positing full update to 3020.ffff.ffff.ffff via Serial0 (broadcast) IPXRIP: positing full update to 3021.ffff.ffff.ffff via Serial1 (broadcast) IPXRIP: sending update to 3020.ffff.ffff.ffff via Serial0 IPXRIP: src=3020.0000.0c03.14d8, dst=3020.ffff.ffff.ffff, packet sent network 3021, hops 1, delay 6 network 3010, hops 1, delay 6 network 3000, hops 1, delay 6 IPXRIP: sending update to 3021.ffff.ffff.ffff via Serial1 IPXRIP: src=3021.0000.0c03.14d8, dst=3021.ffff.ffff.ffff, packet sent network 3020, hops 1, delay 6 network 3010, hops 1, delay 6 network 3000, hops 1, delay 6 IPXRIP: sending update to 3010.ffff.ffff.ffff via Ethernet0 IPXRIP: src=3010.aa00.0400.0284, dst=3010.ffff.ffff.ffff, packet sent network 3030, hops 2, delay 7 network 3020, hops 1, delay 1 network 3021, hops 1, delay 1 network 3000, hops 1, delay 1 IPXRIP: sending update to 3000.ffff.ffff.ffff via Ethernet1 Troubleshooting IPX Routing

63 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-63 wg_ro_a#debug ipx sap activity IPX service debugging is on wg_ro_a# 05:31:18: IPXSAP: positing update to 1111.ffff.ffff.ffff via Ethernet0 (broadcast) (full) 05:31:18: IPXSAP: Update type 0x2 len 288 src:1111.00e0.1e5d.ae2f dest:1111.ffff.ffff.ffff(452) 05:31:18: type 0x7, ”ps21", 21.0000.0000.0001(451), 2 hops 05:31:18: type 0x4, "fs31", 31.0000.0000.0001(451), 2 hops 05:31:18: type 0x4, "fs41", 41.0000.0000.0001(451), 2 hops 05:31:18: type 0x7, "ps51", 51.0000.0000.0001(451), 2 hops wg_ro_a# Troubleshooting IPX SAP

64 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-64 IPX Ping wg_ro_a# ping ipx 211.0000.0c01.f4cf Type escape sequence to abort. Sending 5, 100-byte IPXcisco Echoes to 211.0000.0c01.f4cf, timeout is 2 seconds. !!!!! Success rate is 100 percent (0/5)

65 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-65 Use access list 800-899 for standard Deny Permit Destination Address Source Address An Example Using an IPX Packet Data Packet (IPX header) Frame Header (for example, novell-ether) Testing Packets with Access Lists

66 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-66 Use access list 900-999 for extended Deny Permit Destination Address Source Address An Example Using an IPX Packet Data Packet (IPX header) Frame Header (for example, novell-ether) Testing Packets with Access Lists Protocol, Socket Number

67 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-67 Use access list 1000-1099 for SAP filtering Deny Permit Service Advertisement An Example Using an IPX Packet Data Packet (IPX header) Frame Header (for example, novell-ether) Testing Packets with Access Lists

68 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-68 Service Advertisement Use ACL 800-899 standard 900-999 extended 1000-1099 SAP Deny Permit Destination Address Source Address An Example Using an IPX Packet Data Packet (IPX header) Frame Header (for example, novell-ether) Testing Packets with Access Lists Protocol, Socket Number

69 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-69 Key Concepts for IPX Access Lists IPX addressing uses a network.node Socket number identifies an application or process Standard access lists (800-899) can filter source and destination addresses Extended access lists (900-999) add protocol and socket number capabilities to the filter Access lists (1000-1099) are SAP filters for service types and servers on one or more networks

70 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-70 Frequent updates reduce the bandwidth for user traffic Controlling IPX Overhead Server SAP RIP Router SAP RIP SAP RIP WAN Link Flooded with Overhead Traffic Client GNS

71 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-71 Step 1: Set parameters for this access list test statement (which can be one of several statements) Router(config)# access-list access-list-number { deny | permit } { test conditions } Step 2: Enable an interface to become part of the group that uses the specified access list Router(config-if)# ipx access-group access-list-number | name [ in | out ] Access List Command Overview IPX access lists are numbered or named 800-899 - standard 900-999 - extended

72 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-72 Sets parameters for this list entry Standard access list uses list number in range 800 to 899 Router(config)# access-list access-list-number { deny | permit } source-network [.source-node [ source-node-mask ]] [ destination-network ] [.destination-node [ destination-node-mask ]]] IPX Standard Access List Configuration

73 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-73 IPX Standard Access List Configuration Router(config-if)# ipx access-group access-list-number [ in | out ] Activates the access list on an interface Sets parameters for this list entry Standard access list uses list number in range 800 to 899 Router(config)# access-list access-list-number { deny | permit } source-network [.source-node [ source-node-mask ]] [ destination-network ] [.destination-node [ destination-node-mask ]]]

74 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-74 Standard IPX Access List Example Client Server Client E0 E2 E1 Network 2b Network 3c Network 4d access-list 800 permit 2b 4d (implicit deny all) int e 0 ipx network 4d ipx access-group 800 out int e 1 ipx network 3c int e 2 ipx network 2b int e3 ipx network 1a Server E3 Network 1a

75 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-75 IPX Extended Access List Configuration Router(config)# access-list access-list-number { deny | permit } protocol [ source-network ] [[[.source-node ] source-node-mask ] | [.source-node source-network-mask. source-node-mask ]] [ source-socket ] [ destination.network ] [[[.destination-node ] destination-node-mask ] | [.destination-node destination-network-mask. destination-nodemask ]] [ destination-socket ] [ log ] Sets parameters for this list entry Extended access list uses list-number in range 900 to 999

76 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-76 IPX Extended Access List Configuration Router(config-if)# ipx access-group access-list-number [ in | out ] Activates the IPX extended access list on an interface Router(config)# access-list access-list-number { deny | permit } protocol [ source-network ] [[[.source-node ] source-node-mask ] | [.source-node source-network-mask. source-node-mask ]] [ source-socket ] [ destination.network ] [[[.destination-node ] destination-node-mask ] | [.destination-node destination-network-mask. destination-nodemask ]] [ destination-socket ] [ log ] Sets parameters for this list entry Extended access list uses list-number in range 900 to 999

77 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-77 Normal IPX SAP Operation Routers does not forward SAP broadcasts Server/ Router C Server/ Router D Client 2 A Large IPX Network Server/ Router A Client 1 Server/ Router B

78 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-78 Normal IPX SAP Operation Routers does not forward SAP broadcasts IPX routers send SAP table every 60 seconds SAP Table Server/ Router C Server/ Router D Client 2 A Large IPX Network Server/ Router A Client 1 Server/ Router B SAP Table

79 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-79 Apply the access list to the interface as an input or output SAP filter Output filter: Do not add filtered SAPs to the SAP table sent How to Use SAP Filters Input filter: Do not add filtered SAPs to SAP table SAP SAP Table SAP SAP Table SAP

80 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-80 SAP Filter Configuration Router(config)# access-list access-list-number { deny | permit } network [.node ] [ network-mask. node-mask ] [ service-type [ server-name ]] Creates a SAP filter list

81 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-81 Router(config)# access-list access-list-number { deny | permit } network [.node ] [ network-mask. node-mask ] [ service-type [ server-name ]] Router(config-if)# ipx output-sap-filter access-list-number Router(config-if)# ipx input-sap-filter access-list-number SAP Filter Configuration Creates a SAP filter list Activates an output SAP Filter on interface Activates an input SAP filter on interface

82 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-82 SAP Filter Example 1 E0 FS-A FS-B Internal IPX Network 1a Internal IPX Network 2a FS-C FS-D Network 11b Internal IPX Network cc Internal IPX Network dd Network 4a Network 9e Network 12b E0 E1 S0 Cisco B Cisco A

83 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-83 SAP Filter Example 1 access-list 1000 permit 1a 4 access-list 1000 permit 2a 4 interface ethernet 0 ipx network 11b interface serial 0 ipx network 12b ipx output-sap-filter 1000 Only file services from FS-A and FS-B are advertised across router Cisco B’s S0 interface E0 FS-A FS-B Internal IPX Network 1a Internal IPX Network 2a FS-C FS-D Network 11b Internal IPX Network cc Internal IPX Network dd Network 4a Network 9e Network 12b E0 E1 S0 Cisco B Cisco A

84 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-84 SAP Filter Example 2 access-list 1001 deny -1 7 access-list 1001 permit -1 interface ethernet 0 ipx network 9e interface ethernet 1 ipx network 4a interface ethernet 2 ipx network 1 ipx input-sap-filter 1001 Print services from Server A and B are not entered into the SAP table of router Cisco A Network 1 Network 3d E2 To0 E1 Cisco B Network 7f E0 Network 4a Network 9e E0 E1 Cisco A A B

85 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-85 Verifying IPX Access Lists wg_ro_a#show ipx int e0 Ethernet0 is up, line protocol is up IPX address is 11.00e0.1e5d.ae2f, NOVELL-ETHER [up] Delay of this IPX network, in ticks is 1 throughput 0 link delay 0 IPXWAN processing not enabled on this interface. IPX SAP update interval is 60 seconds IPX type 20 propagation packet forwarding is disabled Incoming access list is 801 Outgoing access list is not set IPX helper access list is not set SAP GNS processing enabled, delay 0 ms, output filter list is not set SAP Input filter list is not set SAP Output filter list is not set SAP Router filter list is not set Input filter list is not set Output filter list is not set Router filter list is not set Netbios Input host access list is not set wg_ro_a#show ipx access-list IPX standard access list 801 permit 12 FFFFFFFF permit 22 FFFFFFFF

86 © 1999, Cisco Systems, Inc. www.cisco.com 10-86 Exercise

87 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-87 Visual Objective podwg_ro’s s0wg_ro’s e0 A11A11 B12A12 C13A13 D14A14 E15A15 F16A16 G17A17 H18A18 I19A19 J20A20 K21A21 L22A22 s1/0 - s2/3 IPX Network 11 … 22 IPX Network 3bbb IPX Network 11A IPX Network 22A core_ server wg_sw_a wg_sw_l wg_pc_a wg_pc_l wg_ro_a e0/1 e0/2 e0/1 e0 fa0/23 core_sw_a wg_ro_l core_ro fa0/24fa0/0 LL s0 IPX Network 11 s0 IPX Network 22...

88 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-88 s1/0 - s2/3 IPX Network 11 … 22 IPX Network 3bbb IPX Network 11A IPX Network 22A Visual Objective core_ server wg_sw_a wg_sw_l wg_pc_a wg_pc_l wg_ro_a e0/1 e0/2 e0/1 e0 fa0/23 core_sw_a wg_ro_l core_ro fa0/24fa0/0 LL s0 IPX Network 11 s0 IPX Network 22... SAP X X X X FS2 PS2 SAP FS2 PS2

89 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-89 After completing this chapter, you should be able to perform the following tasks: Describe basic IPX operation Determine the required IPX network number and encapsulation type for a given interface Enable the Novell IPX protocol Verify IPX connectivity Configure and monitor IPX Access Lists and SAP traffic filters Summary

90 © 1999, Cisco Systems, Inc. www.cisco.com ICND—11-90 Review Questions 1. How many bits are in an IPX network number? 2. How many bits are in an IPX node number? 3. What are the metrics used by IPX RIP? 4. What is the command that enables IPX routing on an interface? 5. Standard IPX Access lists allow filtering of what items?

Download ppt "© 1999, Cisco Systems, Inc. 11-1 Chapter 11 Configuring Novell IPX."

Similar presentations

S4 C1 REVIEW. Review Topics Switching, VLANs, LAN Design, Routing Protocols (especially IGRP), ACLs, and IPX Why use LAN switching and VLANs Must gather.

S4 C1 REVIEW. Review Topics Switching, VLANs, LAN Design, Routing Protocols (especially IGRP), ACLs, and IPX Why use LAN switching and VLANs Must gather.
RIP V1 W.lilakiatsakun.

RIP V1 W.lilakiatsakun.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.
Chapter 9: Access Control Lists

Chapter 9: Access Control Lists
Basic IP Traffic Management with Access Lists

Basic IP Traffic Management with Access Lists
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
Ch. 9 – Basic Router Troubleshooting CCNA 2 version 3.0.

Ch. 9 – Basic Router Troubleshooting CCNA 2 version 3.0.
1 CCNA 2 v3.1 Module 9. 2 Basic Router Troubleshooting CCNA 2, Module 9.

1 CCNA 2 v3.1 Module 9. 2 Basic Router Troubleshooting CCNA 2, Module 9.
Institute of Technology, Sligo Dept of Computing Cisco Semester 4 Chapter 1, version 2.1.3 Review.

Institute of Technology, Sligo Dept of Computing Cisco Semester 4 Chapter 1, version Review.
Novell IPX Semester 3, Chapter 7 Allan Johnson. Novell IPX Overview Novell IPX is a proprietary suite of protocols that includes the following: A connectionless.

Novell IPX Semester 3, Chapter 7 Allan Johnson. Novell IPX Overview Novell IPX is a proprietary suite of protocols that includes the following: A connectionless.
Community College of Rhode Island By Carl Marandola, CCAI-CCNA Year 2 - Chapter 7/Cisco 3 -Module 7 Novell IPX.

Community College of Rhode Island By Carl Marandola, CCAI-CCNA Year 2 - Chapter 7/Cisco 3 -Module 7 Novell IPX.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 RIP version 1&2 Revised by Chakchai So-In, Ph.D.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 RIP version 1&2 Revised by Chakchai So-In, Ph.D.
IST 228\Ch5\IP Routing1. 2  Review of Chapter 4 Start the router simulator. You will see the prompt Router>. This is the user mode prompt. Change the.

IST 228\Ch5\IP Routing1. 2  Review of Chapter 4 Start the router simulator. You will see the prompt "Router>". This is the user mode prompt. Change the.
Single-Area OSPF Implementation

Single-Area OSPF Implementation
CISCO NETWORKING ACADEMY Chabot College ELEC 99.08 IP Routing Protocol Highlights.

CISCO NETWORKING ACADEMY Chabot College ELEC IP Routing Protocol Highlights.
© 1999, Cisco Systems, Inc. 11-1 第十一章 配置 Novell IPX.

© 1999, Cisco Systems, Inc 第十一章 配置 Novell IPX.
InterVLAN Routing Design and Implementation. What Routers Do Intelligent, dynamic routing protocols for packet transport Packet filtering capabilities.

InterVLAN Routing Design and Implementation. What Routers Do Intelligent, dynamic routing protocols for packet transport Packet filtering capabilities.
CCNA Guide to Cisco Networking Chapter 8: Routing Protocols and Network Address Translation.

CCNA Guide to Cisco Networking Chapter 8: Routing Protocols and Network Address Translation.
© 2002, Cisco Systems, Inc. All rights reserved..

© 2002, Cisco Systems, Inc. All rights reserved..
Advantages of Dynamic Routing over Static Routing : Advertise only the directly connected networks. Updates the topology changes dynamically. Administrative.

Advantages of Dynamic Routing over Static Routing : Advertise only the directly connected networks. Updates the topology changes dynamically. Administrative.

Similar presentations

Ads by Google