Table of Contents

AppleTalk

Syntax Description
Usage Guidelines
Keywords
Examples
Related Commands

Configure Command Sections

This chapter lists all the sections and keywords you can use with the configure command.

AppleTalk

This section is used to configure AppleTalk parameters for a device.

Syntax Description

Phase 1 | Phase 2	Phase 1 specifies the routing characteristics of AppleTalk Phase 1. Phase 2, the default, specifies the routing characteristics of AppleTalk Phase 2. You can have a section for Phase 1 and one for Phase 2 for the same interface.
Ethernet | WAN	Identifies the type of port for which you want to configure this section.
slot:port	For a modular platform, identify the slot: For theVPN 5008 chassis, slot 0 is the far left slot. For the VPN 5002 chassis, slot 0 is the top slot. For the VPN 5001 concentrator, enter only the port number. For a module with one port, the port is 0.
VPN number	Identifies the VPN port you configured in the Tunnel Partners section for a LAN-to-LAN tunnel.
Bridge [0.sub-interface]	If you enabled bridging on one or more AppleTalk ports, you can bridge all the ports together and assign a single AppleTalk network to the bridge. You can create multiple Bridge sections with unique AppleTalk networks by using sub-interface numbers, from 1 to 255.

Usage Guidelines

Cisco Systems devices support AppleTalk Phase 1 and AppleTalk Phase 2, and "transitional routing" between the two. AppleTalk Phase 1 is an earlier version of the AppleTalk protocol. We recommend that all new AppleTalk installations use AppleTalk Phase 2.

Keywords

After entering the configure command for the section, enter one or more of the following keywords.

mode = {routed | bridged | off}	The mode keyword describes the method the device is to use to handle AppleTalk packets when received by the device. routed enables the port of the device. It specifies that the device is attached to a routed network and the device will forward packets to its other ports if it is a router or to the virtual private networks if it is a VPN access server. If the device is a router, packets are forwarded by looking up the network address in the device's routing table maintained by AppleTalk RTMP (Routing Table Maintenance Protocol). If the device is a VPN access server (IntraPort class) packets are forwarded to the virtual private network depending on the access parameters and settings of the users that are attached to the server. It will use the routing table maintained by RTMP to forward packets from the virtual private network to the local area network. bridged enables the port of a router to be attached to a bridged network and forward packets based on the physical address using the router's bridge cache maintained through the IEEE Spanning Tree Protocol or through active listening. If bridged is specified, bridging must be enabled globally in the router in the bridging global section and on the interface in the bridging section. It is possible to assign an AppleTalk address to the router using the appletalk phase 2 bridge section if it is to be managed by VPN 5000 Manager using the AppleTalk protocol while bridging. Off disables the port of the device. If off is specified, then AppleTalk packets received on the interface will be silently discarded
seed = {seed | auto | noseed}	The seed keyword specifies whether the interface will function as the seed Ethernet interface for the attached network. When set to seed, the interface provides network number and zone information to the network attached to the interface. The network number and zone name must be specified using keywords documented later in this section. Before seeding, the device will listen to the network for existing network number and zone information. This existing information takes precedence over the configured information if found to be different. auto specifies that the AppleTalk interface be an autoseed interface. Autoseed means the device will listen for a network range being set by another router on the segment connected to this interface and use this range if it exists. If it doesn't discover a range, the device will automatically generate a valid number using the AppleTalk Routing Table discovered by listening for 15 seconds. noseed specifies that the AppleTalk interface be a non-seed interface. noseed means the device will listen for an AppleTalk network range being set by another router on the segment connected to this interface and use this range if it exists. It will wait indefinitely until a range is set by another router on the segment.
netlower = number	The netlower keyword specifies the lower network number in a range of AppleTalk network numbers for a seed Ethernet interface, or the single network number for a numbered WAN interface. This keyword is ignored if the interface isn't configured as either a seed Ethernet interface or numbered WAN interface. The network number must be between 1 and 65,279. Each network number will support up to 253 node addresses. For all types of Ethernet interfaces being seeded, the netlower and the netupper keywords must be specified. For Phase 2 Ethernet interfaces, the two values may be equal. For Phase 1 Ethernet interfaces, they must be equal. Accidental selection of an AppleTalk network number (or range of numbers) which is already in use on another network segment may cause hard-to-diagnose problems. You should carefully track which AppleTalk network numbers are in use, and where. The show appletalk command can help in tracking your network configuration.
netupper = number	The netupper keyword specifies the upper network number in a range of AppleTalk network numbers for a seed Ethernet interface. This keyword is ignored if the interface isn't configured as a seed Ethernet interface. The network number must be between 1 and 65,279. Each network number will support up to 253 node addresses. For all types of Ethernet interfaces being seeded, the netlower and the netupper keywords must be specified. For Phase 2 Ethernet interfaces, the two values may be equal, but for Phase 1 Ethernet interfaces, they must be equal. Accidental selection of an AppleTalk network number (or range of numbers) which is already in use on another network segment may cause hard-to-diagnose problems. You should carefully track which AppleTalk network numbers are in use, and where. The show appletalk command can help in tracking your network configuration.
node = number	The node keyword lets you provide a suggestion for the node number the device should use when performing its dynamic node probing when starting up. On WAN interfaces it specifies the exact number to be used for the AppleTalk node number since dynamic node probing isn't performed on WAN interfaces. The value must be between 1 and 253. On Frame Relay WAN interfaces a unique node number must be assigned to the interface. Note   Since AppleTalk on Ethernet claims node numbers dynamically at start up, assigning known AppleTalk node numbers to an interface can make it easier to diagnose network problems using a network packet monitor.
defzone = string	The defzone keyword defines the default AppleTalk zone name for Phase 2 Ethernet interfaces and the single zone name that can be defined for WAN and Phase 1 interfaces. This keyword must be used on Phase 2 and Phase 1 interfaces configured to seed, and on WAN interfaces configured to be numbered, otherwise it will be ignored. Zone names may be up to 32 characters in length and may include spaces. If you wish to add other zones to the zone list for the extended network (Phase 2 only), use the zone keyword in this section.
zone = string	The zone keyword lets a zone list be specified for extended (Phase 2) interfaces. Only extended Ethernet interfaces (Phase 2 Ethernet) which you set to seed can have zone lists specified for them. Use this keyword multiple times to define a complete zone list for the interface. This keyword will be ignored if specified in a nonextended (Phase 1 or WAN) interface. Typically, zone names are chosen which have some significance to the physical location or the corporate purpose of the network segment. An example would be "Accounting Department" or "Administration." These names will appear in the Chooser for Macintoshes on the network. Note that this keyword is not used to specify the interface's zone name. The keyword defzone, documented in this section, allows specification of either the default zone name for an extended interface (Phase 2) or the interface's zone name for a nonextended interface (Phase 1).
numbered = {on | off}	The numbered keyword specifies whether the wide area network connected to this interface will have an AppleTalk network number associated with it. If on is specified, then you must set an AppleTalk network number and zone for this WAN interface. See the netlower and defzone keywords. Many wide area network connections are simple point-to-point links. These links do not generally require a network number because there are only two devices on the link. All traffic sent from one end is, by definition, destined for the other end. You generally do not need a numbered WAN interface if you are using the PPP transport protocol. In contrast, Frame Relay networks may have a number of participating routers connected through a single physical interface. Because of this, use of the Frame Relay transport protocol requires a numbered WAN interface.
updates = {periodic | triggered}	The updates keyword specifies the way in which the device sends AppleTalk RTMP information over the link. When updates are designated as periodic, the device will send RTMP packets over the link every 10 seconds. These periodic update packets will cause a WAN interface set for dial-on-demand operation to either stay up indefinitely or to continuously dial, connect, and then drop the connection. When updates are designated as triggered, the device will modify the standard AppleTalk RTMP behavior for this interface to send AppleTalk RTMP packets only when there has been an update to its routing table information, or when it has detected a change in the accessibility of the next hop router.
outfilters = string	The outfilters keyword allows the named AppleTalk packet filter to be associated with the output filter interpreter of the interface. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. Packets being transmitted on the interface will be compared against the filter list(s) specified. Any packet not explicitly allowed by the rule set is dropped silently. When more than one set is defined, the filter interpreter will process the sets in the order specified. The only rules used in this interpreter are the type, srcnet, dstnet, srcnode, dstnode and srcskt. For Name Binding Protocol (NBP) request and reply packets the NBPName, NBPType and NBPZone rules are also used. All other rules are ignored. See the AppleTalk Filter section for a definition of the AppleTalk Packet filtering rules.
infilters = string	The infilters keyword allows the named AppleTalk packet filter to be associated with the input filter interpreter of the interface.Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. Packets being transmitted on the interface will be compared against the filter list(s) specified. Any packet not explicitly allowed by the rule set is dropped silently. When more than one set is defined, the filter interpreter will process the sets in the order specified. The only rules used in this interpreter are the type, srcnet, dstnet, srcnode, dstnode and srcskt. For NBP request and reply packets the NBPName, NBPType and NBPZone rules are also used. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. All other rules are ignored. See the AppleTalk Filter section for a definition of the AppleTalk packet filtering rules.
outrtmpfilters = string	The outrtmpfilters keyword allows the named AppleTalk filters to be associated with the output RTMP (Routing Table Maintenance Protocol) filter interpreter of the interface. RTMP tuples (AppleTalk network numbers) originating on the interface will be filtered with these rules. The only rules used in this interpreter are the network and net-range rules. All other rules are ignored. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. See the AppleTalk Filter section for a definition of the AppleTalk packet filtering rules.
inrtmpfilters = string	The inrtmpfilters keyword allows the named AppleTalk filters to be associated with the input RTMP filter interpreter of the interface. RTMP tuples (AppleTalk network numbers) received on the interface will be filtered with these rules. The only rules used in this interpreter are the network and net-range rules. All other rules are ignored. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. See the AppleTalk Filter section for a definition of the AppleTalk packet filtering rules.
getzonefilters = string	The getzonefilters keyword allows the named AppleTalk filters to be associated with the Get Zone List (GZL) filter interpreter of the interface. The interpreter allows the filtering of outgoing GZL replies on an interface. These replies contain the zone list displayed by the Chooser on a Macintosh when it is opened. This interpreter will allow control of the zones that are seen on a Macintosh behind a device. The only rules used in this interpreter are the network, net-range and zone rules. All other rules are ignored. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. See the AppleTalk Filter section for a definition of the AppleTalk packet filtering rules.
zipreplyfilters = string	The zipreplyfilters keyword allows the named AppleTalk filters to be associated with the ZIP reply filter interpreter of the interface. The ZIP reply interpreter allows incoming zone names in ZIP reply packets to be filtered. ZIP reply packets are used between routers and access servers to exchange the zone names for the networks kept in their routing tables. These devices are required to maintain a zone list for each of the networks maintained in the AppleTalk routing table and receive the zone name from an upstream router advertising the network. Extended networks allow more than one zone name to be associated with the range, even if it is a single range. Note   If zone filtering for Macintosh end workstations is required, use a get zone list filter. If a zone list is restricted in an upstream router with a ZIP reply filter, then the downstream routers will receive the filtered zone list for the network and subsequent downstream routers will also receive the filtered zone list. The only rules used in this interpreter are the zone and network rules. All other rules are ignored. Up to four filter sets may be specified, each enclosed in double quotes and separated by white space. If no string is specified, then the keyword is ignored by the parser. This feature can be used to turn off a filter set (or sets) without deleting the keyword. See the AppleTalk Filter section for a definition of the AppleTalk Packet filtering rules.
lockout = {on | off}	The lockout keyword specifies an NBP filter that is applied to the physical network segment connected to the interface. Specifying on causes the device to drop any NBP lookups which are destined for this physical segment. This will protect devices on the segment from access by users on other segments.
lockin = {on | off}	The lockin keyword specifies an NBP filter that is applied to the physical network segment connected to the interface. Specifying on causes the device to drop any NBP lookups which originate on this network segment destined for another network segment. The effect will be that users will not have access through the device to network devices on other segments.
lwfilter = {on | off}	The lwfilter keyword allows a LaserWriter filter to be enabled for the interface. A LaserWriter filter protects all LaserWriters in the AppleTalk zone configured for the interfaces from NBP lookup by computers in other AppleTalk zones. The effect is that LaserWriter devices in the DefZone will only be visible to Macintoshes on networks with the same zone name across your AppleTalk internet.
tildefilter = {on | off}	The tildefilter keyword allows a tilde filter to be enabled for the interface. A tilde filter protects all devices in the AppleTalk zone configured for this interface's network segment whose names end with a tilde character (~) from NBP lookup by computers in other AppleTalk zones. The effect is that ~ devices in the DefZone will only be visible to Macintoshes on networks with the same zone name across your AppleTalk internet.
stizfilter ={on | off}	The stizfilter keyword allows a stay-in-zone AppleTalk zone filter to be enabled for the interface. Stay-in-zone filtering means the device will not forward NBP lookups which are directed from the AppleTalk zone configured for this interface's network segment to any other zone. The effect is that you will only see devices on other networks with the same zone name across your AppleTalk internet. This filter is applied based on logical AppleTalk zones rather than on physical segments. On nonextended networks (Phase 1), zone filters are applied for the AppleTalk zone configured for the network segment. On extended networks (Phase 2) they are applied to the AppleTalk default zone configured for the network segment.

Examples

The following example shows a typical AppleTalk Configuration for Ethernet interfaces.

[ appletalk phase 2 ethernet 0 ]
Mode                     = Routed
Seed                     = Seed
NetLower                 = 4000
NetUpper                 = 4100
Node                     = 100
DefZone                  = "The 4000 Club"
Zone                     = "Accounting"
 

The same configuration can be viewed with the show appletalk config command, as follows.

Port       Phase   Seed  Netnum         Node  Zone Name
Ether0         1   ** Disabled **
Ether0         2   On    4000 - 4100    100   The 4000 Club
Ether1         1   ** Disabled **
Ether1         2   Auto                 n/a   
Bridge         1   ** Disabled **
Bridge         2   ** Disabled **
Wan0               Unnumbered interface
                   Remote Address:    0:0     <Trigger>
Wan1               Unnumbered interface
                   Remote Address:    0:0     <Trigger>
 
NBP Filters:
                   Stay in    Lookups    Tilde     Laser-
Port       Phase   zone?      In  Out    Devices   Writers
Ether0         1   ** Disabled **
Ether0         2   Off        Off Off    Off       Off
Ether1         1   ** Disabled **
Ether1         2   Off        Off Off    Off       Off
Bridge         1   ** Disabled **
Bridge         2   ** Disabled **
Wan0               Off        Off Off    Off       Off
Wan1               Off        Off Off    Off       Off
 
Appletalk Zone List:
     Accounting
 
AARP Timeout: 0
 

Related Commands

Command	Description
configure Bridging	Sets bridging parameters for an interface
configure Bridging Global	Enables bridging for the device
edit config Appletalk Filter	Creates AppleTalk filters
show appletalk	Shows AppleTalk config, status and statistics

Posted: Wed Sep 27 10:29:14 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.