Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Defining Selected Network and Zone Access in AppleTalk Phase 2 Networks

IP.com Disclosure Number: IPCOM000112087D
Original Publication Date: 1994-Apr-01
Included in the Prior Art Database: 2005-Mar-26
Document File: 4 page(s) / 99K

Publishing Venue

IBM

Related People

Fahmy, AF: AUTHOR [+2]

Abstract

Described is a method for controlling access between portions of an AppleTalk internet. This is accomplished by limiting the AppleTalk routes and zones that a router learns from adjacent routers.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 52% of the total text.

Defining Selected Network and Zone Access in AppleTalk Phase 2 Networks

      Described is a method for controlling access between portions
of an AppleTalk internet.  This is accomplished by limiting the
AppleTalk routes and zones that a router learns from adjacent
routers.

      Access across networks and zones in different segments of an
AppleTalk internet might need to be limited due to a number of
reasons such as:

o   Segments are under different administrative control.

o   Segments use conflicting network numbering or zone naming
    conventions.

o   Exchange of routing and zone information across a large AppleTalk
    internet could be reduced by dividing an internet into different
    segments and limiting the exchange of routing and zone tables
    across these segments.

o   Certain routes to networks might need to be controlled due to
    security, data traffic or other considerations.

      This disclosure shows a method of limiting the access of
certain segments of an AppleTalk Phase 2 internet to other segments.
The same method could also be utilized to prevent unauthorized
routing table updates.

This is accomplished as follows:

o   On an internet router, such as the IBM 6611, a port is defined
    with a list of selected networks about which the router accepts
    routing information through that port.  The port could also be
    defined such that the router does not accept any routing
    information arriving on that port.

          Additionally, for each of the selected networks, a list of
    zones is defined on the router for those zones which the router
    accepts information about.

o   When the router receives a routing table update from another
    router through the port defined with selected networks, the
    router accepts information only about the selected networks.
    Information about other networks is ignored.

          Thus, no entries in the routing table exist for routes to
    networks that are not specifically defined in the selected
    network list on the port.  However, entries might still exist for
    routes to those networks through other ports on the router which
    are not defined with specific selected networks (all information
    received on such ports is accepted) or on ports where those
    networks are defined in a list of selected network...