marcin at leon
Oct 19, 2011, 4:40 AM
Post #1 of 1
(301 views)
Permalink
|
|
protocol filter on EXOS and EW
|
|
hello,
I have configured a VLAN with IP protocol allowed only (0x0800 and 0x0806).
But, on broadcast on this vlan I can still see this:
20:14:30.747517 00:0c:42:73:88:63 > 01:00:0c:cc:cc:cc, ethertype 802.1Q
(0x8100), length 83: vlan 807, p 0, LLC, dsap SNAP (0xaa) Individual,
ssap SNAP (0xaa) Command, ctrl 0x03: oui Cisco (0x00000c), pid CDP
(0x2000): CDPv1, ttl: 120s, checksum: 376 (unverified), length 57
Device-ID (0x01), length: 8 bytes: 'MikroTik'
Port-ID (0x03), length: 10 bytes: 'br_vlan807'
Capability (0x04), length: 4 bytes: (0x00000001): Router
Version String (0x05), length: 3 bytes:
5.6
Platform (0x06), length: 8 bytes: 'MikroTik'
20:15:11.076600 00:0c:42:73:88:63 > 01:00:0c:cc:cc:cc, ethertype 802.1Q
(0x8100), length 83: vlan 807, p 0, LLC, dsap SNAP (0xaa) Individual,
ssap SNAP (0xaa) Command, ctrl 0x03: oui Cisco (0x00000c), pid CDP
(0x2000): CDPv1, ttl: 120s, checksum: 376 (unverified), length 57
Device-ID (0x01), length: 8 bytes: 'MikroTik'
Port-ID (0x03), length: 10 bytes: 'br_vlan807'
Capability (0x04), length: 4 bytes: (0x00000001): Router
Version String (0x05), length: 3 bytes:
5.6
Platform (0x06), length: 8 bytes: 'MikroTik'
Is it some bug or I don't understand this filtering ?
In my opinions LLC frames should be dropped.
Regards,
Marcin
_______________________________________________
extreme-nsp mailing list
extreme-nsp [at] puck
https://puck.nether.net/mailman/listinfo/extreme-nsp
|
