-
Access and Communication Servers Command Reference
-
About This Manual
-
Access Server and Communication Server Product Overview
-
User Interface Commands
-
System Image and Configuration File Load Commands
-
Configuring Terminal Lines and Modem Support
-
System Management Commands
-
User Interface Config Commands
-
Dial on Demand Routing Commands
-
X.25 Configuration Commands
-
Frame Relay Commands
-
SMDS Commands
-
Telnet Configuration Commands
-
LAT Configuration Commands
-
TN3270 Configuration
-
AppleTalk Remote Access Commands
-
SLIP and PPP Configuration Commands
-
XRemote Configuration Commands
-
AppleTalk Routing Commands
-
IP Commands
-
IP Routing Protocols Commands
-
Novell IPX Commands
-
Protocol Translation Configuration Commands
-
Appendix A, ASCII Character Set
-
Appendix B, Modem and Chat Script Configuration
-
Appendix C, Regular Expressions
-
Appendix D, Refs and Reading
-
Appendix E, X.3 PAD Parameters
-
Table Of Contents
appletalk alternate-addressing
appletalk arp retransmit-count
appletalk aurp update-interval
appletalk domain hop-reduction
appletalk ignore-verify-errors
appletalk name-lookup-interval
appletalk permit-partial-zones
appletalk route-redistribution
appletalk strict-rtmp-checking
show appletalk adjacent-routes
show appletalk eigrp neighbors
AppleTalk Routing Commands
AppleTalk is a local-area network system that was designed and developed by Apple Computer, Inc. It can run over Ethernet, Token Ring, and FDDI networks, and over Apple's proprietary twisted-pair media access system (LocalTalk). AppleTalk specifies a protocol stack comprising several protocols that direct the flow of traffic over the network.
Apple Computer uses the name AppleTalk to refer to the Apple networking architecture. Apple refers to the actual transmission media used in an AppleTalk network as LocalTalk (Apple's proprietary twisted-pair transmission medium for AppleTalk), TokenTalk (AppleTalk over Token Ring), EtherTalk (AppleTalk over Ethernet), and FDDITalk (AppleTalk over Fiber Distributed Data Interface).
Use the commands in this chapter to configure and monitor AppleTalk networks. For AppleTalk configuration information and examples, refer to the "Configuring AppleTalk Routing" chapter in the Access and Communication Servers Configuration Guide .
Note
This chapter discusses routing functionality of your access server. For simplicity, we have used the term access server to indicate those servers which provide routing, and therefore act as routers.
access-list additional-zones
To define the default action to take for access checks that apply to zones, use the access-list additional-zones global configuration command.
access-list access-list-number {deny | permit} additional-zones
Syntax Description
access-list-number
Number of the access list. This is a decimal number from 600 to 699.
deny
Denies access if the conditions are matched.
permit
Permits access if the conditions are matched.
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
The access-list additional-zones command defines the action to take for access checks not explicitly defined with the access-list zone command. If you do not specify this command, the default action is to deny other access.
You apply access lists defined with the access-list additional-zones command to outgoing routing updates and GZL filters (using the appletalk distribute-list out, and appletalk getzonelist-filter commands). You cannot apply them to data-packet filters (using the appletalk access-group command) or to incoming routing update filters (using the appletalk distribute-list in command).
Example
The following example creates an access list based on AppleTalk zones:
access-list 610 deny zone Twilightaccess-list 610 permit additional-zonesRelated Commands
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
appletalk permit-partial-zonesaccess-list cable-range
To define an AppleTalk access list for a cable range (for extended networks only), use the access-list cable-range global configuration command. To remove an access list, use the no form of this command.
access-list access-list-number {deny | permit} cable-range cable-range
no access-list access-list-number [{deny | permit} cable-range cable-range]Syntax Description
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
When used as a routing update filter, the access-list cable-range command affects matching on extended networks only. The conditions defined by this access list are used only when a cable range in a routing update exactly matches that specified in the access-list cable-range command. The conditions are never used to match a network number (for a nonextended network).
When used as a data-packet filter, the access-list cable-range command affects matching on any type of network number. The conditions defined by this access list are used only when the packet's source network lies in the range defined by the access list.
You apply access lists defined with the access-list cable-range command to data-packet and routing-update filters (using the appletalk access-group, appletalk distribute-list in, and appletalk distribute-list out). You cannot apply them to GetZoneList (GZL) filters (using the appletalk getzonelist-filter command).
To delete an access list, specify the minimum number of keywords and arguments needed to delete the proper access list. For example, to delete the entire access list, use the following command:
no access-list access-list-number
To delete the access list for a specific network, use the following command:
no access-list access-list-number {deny | permit} cable-range cable-range
Priority queuing for AppleTalk operates on the destination network number, not the source network number.
Example
The following access list forwards all packets except those destined to cable range 10 to 20:
access-list 600 deny cable-range 10-20access-list 600 permit other-accessRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list includes
access-list network
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list (protocol) †access-list includes
To define an AppleTalk access list that overlaps any part of a range of network numbers or cable ranges (for both extended and nonextended networks), use the access-list includes global configuration command. To remove an access list, use the no form of this command.
access-list access-list-number {deny | permit} includes cable-range
no access-list access-list-number [{deny | permit} includes cable-range]Syntax Description
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
When used as a routing update filter, the access-list includes command affects matching on extended and nonextended AppleTalk networks. The conditions defined by this access list are used when a cable range or network number overlaps, either partially or completely, one (or more) of those specified in the access-list includes command.
When used as a data-packet filter, the conditions defined by this access list are used when the packet's source network lies in the range defined in the access-list includes command.
You apply access lists defined with the access-list includes command to data-packet and routing-update filters (using the appletalk access-group, appletalk distribute-list in, and appletalk distribute-list out). You cannot apply them to GZL filters (using the appletalk getzonelist-filter command).
To delete an access list, specify the minimum number of keywords and arguments needed to delete the proper access list. For example, to delete the entire access list, use the following command:
no access-list access-list-number
To delete the access list for a specific network, use the following command:
no access-list access-list-number {deny | permit} includes cable-range
Priority queuing for AppleTalk operates on the destination network number, not the source network number.
Example
The following example defines an access list that permits access to any network or cable range that overlaps any part of the range 10 to 20. This means, for example, that cable ranges 13 to 16 and 17 to 25 will be permitted. This access list also permits all other ranges.
access-list 600 permit includes 10-20access-list 600 permit other-accessRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list cable-range
access-list network
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list (protocol) †access-list nbp
To define an AppleTalk access-list entry for a particular NBP named entity (object), class of NBP named entities (type), or NBP named entities belonging to a specific area (zone), use the access-list nbp global configuration command. To remove an NBP access-list entry from the access list, use the no form of this command.
access-list access-list-number {deny | permit} nbp seq {type | object | zone} string
no access-list access-list-number {deny | permit} nbp seq {type | object | zone} stringSyntax Description
Default
No particular access-list entry for an NBP named entity is defined and the default filtering specified by the access-list other-nbps command takes effect.
Command Mode
Global configuration
Usage Guidelines
The access-list nbp command defines the action to take for filtering NBP packets from a particular type (class of named entities), object (particular named entity), or zone (AppleTalk zone in which named entities reside) superceding the default action for NBP packets from all named entities specified by the access-list other-nbps command. For each command that you enter, you must specify a sequence number. The sequence number serves two purposes. Its principal purpose is to allow you to associate two or three portions of an NBP three-part name, referred to as an NBP tuple. To do this, you enter two or three commands having the same sequence number but each specifying a different keyword and NBP name portion: type, object, or zone. The same sequence number binds them together. This provides you with the ability to restrict forwarding of NBP packets at any level, down to a single named entity.
The second purpose of the sequence number is to allow you to keep track of the number of access-list nbp entries you have made. You must enter a sequence number even if you do not use it to associate portions of an NBP name.
Examples
The following example adds entries to access-list number 607 to allow forwarding of NBP packets from specific sources and deny forwarding of NBP packets from all other sources. The first command adds an entry that allows NBP packets from all printers of type LaserWriter. The second command adds an entry that allows NBP packets from all AppleTalk file servers of type AFPServer. The third command adds an entry that allows NBP packets from all applications called HotShotPaint. For example, there might be an application with a zone name of Accounting and an application with a zone name of engineering, both having the object name of HotShotPaint. NBP packets forwarded from both applications will be allowed.
The final access-list other-nbps command denies forwarding of NBP packets from all other sources.
access-list 607 permit nbp 1 type LaserWriteraccess-list 607 permit nbp 2 type AFPServer access-list 607 permit nbp 3 object HotShotPaintaccess-list 607 deny other-nbpsThe following example adds entries to access-list number 608 to deny forwarding of NBP packets from two specific servers whose fully-qualified NBP names are specified. It permits forwarding of NBP packets from all other sources.
access-list 608 deny nbp 1 object ServerAaccess-list 608 deny nbp 1 type AFPServeraccess-list 608 deny nbp 1 zone Bld3access-list 608 deny nbp 2 object ServerBaccess-list 608 deny nbp 2 type AFPServeraccess-list 608 deny nbp 2 zone Bld3access-list 608 permit other-nbps access-list 608 permit other-accessRelated Commands
access-list additional-zones
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list other-nbps
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list protocol †access-list network
To define an AppleTalk access list for a single network number (that is, for a nonextended network), use the access-list network global configuration command. To remove an access list, use the no form of this command.
access-list access-list-number {deny | permit} network network
no access-list access-list-number [{deny | permit} network network]Syntax Description
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
When used as a routing-update filter, the access-list network command affects matching on nonextended networks only. The conditions defined by this access list are used only when the a nonextended number in a routing update matches a network number specified in one of the access-list network commands. The conditions are never used to match a cable range (for an extended network) even if the cable range has the same starting and ending number.
When used as a data-packet filter, the conditions defined by this access list are used only when the packet's source network matches the network number specified in the access-list network command.
You apply access lists defined with the access-list network command to data-packet and routing-update filters (using the appletalk access-group, appletalk distribute-list in, and appletalk distribute-list out). You cannot apply them to GZL filters (using the appletalk getzonelist-filter command).
In software releases before 9.0, the syntax of this command was access-list access-list-number {deny | permit} network. The current version of the software is still able to interpret commands in this format if it finds them in a configuration or boot file. However, it is recommended that you update the commands in your configuration or boot files to match the current syntax.
Use the no access-list command with the access-list-number argument only to remove an entire access list from the configuration. Specify the optional arguments to remove a particular clause.
To delete an access list, specify the minimum number of keywords and arguments needed to delete the proper access list. For example, to delete the entire access list, use the following command:
no access-list access-list-number
To delete the access list for a specific network, use the following command:
no access-list access-list-number {deny | permit} network network
Priority queuing for AppleTalk operates on the destination network number, not the source network number.
Example
The following example defines an access list that forwards all packets except those destined for networks 1 and 2:
access-list 650 deny network 1access-list 650 deny network 2access-list 650 permit other-accessRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list cable-range
access-list includes
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list (protocol) †access-list other-access
To define the default action to take for access checks that apply to networks or cable ranges, use the access-list other-access global configuration command.
access-list access-list-number {deny | permit} other-access
Syntax Description
access-list-number
Number of the access list. This is a decimal number from 600 to 699.
deny
Denies access if the conditions are matched.
permit
Permits access if the conditions are matched.
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
The access-list other-access command defines the action to take for access checks not explicitly defined with an access-list network, access-list cable-range, access-list includes, or access-list within command. If you do not specify this command, the default action is to deny other access.
You apply access lists defined with the access-list other-access command to data-packet and routing-update filters (using the appletalk access-group, appletalk distribute-list in, and appletalk distribute-list out). You cannot apply them to GZL filters (using the appletalk getzonelist-filter command).
In software releases before 9.0, the syntax of this command was access-list access-list-number {deny | permit} -1. The current version of the software is still able to interpret commands in this format if it finds them in a configuration or boot file. However, it is recommended that you update the commands in your configuration or boot files to match the current syntax.
Priority queuing for AppleTalk operates on the destination network number, not the source network number.
Example
The following example defines an access list that forwards all packets except those destined for networks 1 and 2:
access-list 650 deny network 1access-list 650 deny network 2access-list 650 permit other-accessRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list cable-range
access-list includes
access-list network
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
priority-list (protocol) †access-list other-nbps
To define the default action to take for access checks that apply to NBP packets from named entities not otherwise explicitly denied or permitted, use the access-list other-nbps global configuration command.
access-list access-list-number {deny | permit} other-nbps
no access-list access-list-number {deny | permit} other-nbpsSyntax Description
access-list-number
Number of the access list for AppleTalk. This is a decimal number from 600 to 699.
deny
Denies access if conditions are matched.
permit
Permits access if conditions are matched.
Default
Access is denied.
Command Mode
Global configuration
Usage Guidelines
The access-list other-nbps command defines the action to take for filtering of NBP packets from named entities not explicitly defined by an access-list nbp command. It allows you to implement the default AppleTalk network security state at the named entity level. Any access-list nbp commands you enter affect a particular named entity object, class of named entities, or all named entities within a zone. This command sets the security state for all other NBP named entities. If you do not specify this command, the default action is to deny access.
You can use this command to create an entry in an access list before or after you issue access-list nbp commands. The order of the command in the access list is irrelevant.
Examples
The following example permits forwarding of all NBP packets from all sources except AppleTalk file servers of type AFPServer:
access-list 607 deny nbp 2 type AFPServeraccess-list 607 permit other-nbpsRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list cable-range
access-list includes
access-list nbp
access-list network
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list (protocol) †access-list within
To define an AppleTalk access list for an extended or a nonextended network whose network number or cable range is included entirely within the specified cable range, use the access-list within global configuration command. To remove this access list, use the no form of this command.
access-list access-list-number {deny | permit} within cable-range
no access-list access-list-number [{deny | permit} within cable-range]Syntax Description
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
When used as a routing update filter, the access-list within command affects matching on extended and nonextended AppleTalk networks. The conditions defined by this access list are used when a cable range or network number overlaps, either partially or completely, one (or more) of those specified in the access-list within command.
When used as a data-packet filter, the conditions defined by this access list are used when the packet's source network lies in the range defined in the access-list within command.
You apply access lists defined with the access-list within command to data-packet and routing-update (using the appletalk access-group, appletalk distribute-list in, and appletalk distribute-list out). You cannot apply them to GZL filters (using the appletalk getzonelist-filter command).
To delete an access list, specify the minimum number of keywords and arguments needed to delete the proper access list. For example, to delete the entire access list, use the following command:
no access-list access-list-number
To delete the access list for a specific network, use the following command:
no access-list access-list-number {deny | permit} within cable-range
Priority queuing for AppleTalk operates on the destination network number, not the source network number.
Example
The following example defines an access list that permits access to any network or cable range that is completely included in the range 10 to 20. This means, for example, that cable range 13 to 16 will be permitted, but cable range 17 to 25 will not be. The second line of the access list permits all other packets.
access-list 600 permit within 10-20access-list 600 permit other-accessRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
access-list additional-zones
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
priority-list (protocol) †access-list zone
To define an AppleTalk access list that applies to a zone, use the access-list zone global configuration command. To remove an access list, use the no form of this command.
access-list access-list-number {deny | permit} zone zone-name
no access-list access-list-number [{deny | permit} zone zone-name]Syntax Description
Default
No access lists are predefined.
Command Mode
Global configuration
Usage Guidelines
You apply access lists defined with the access-list zones command to outgoing routing update and GZL filters (using the appletalk distribute-list out, and appletalk getzonelist-filter commands). You cannot apply them to data-packet filters (using the appletalk access-group command) or to incoming routing update filters (using the appletalk distribute-list in command).
To delete an access list, specify the minimum number of keywords and arguments needed to delete the proper access list. For example, to delete the entire access list, use the following command:
no access-list access-list-number
To delete the access list for a specific network, use the following command:
no access-list access-list-number {deny | permit} zone zone-name
Use the access-list additional-zones command to define the action to take for access checks not explicitly defined with the access-list zone command.
Example
The following example creates an access list based on AppleTalk zones:
access-list 610 deny zone Twilightaccess-list 610 permit additional-zonesRelated Commands
access-list additional-zones
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list within
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filter
appletalk permit-partial-zones
appletalk access-group
To assign an access list to an interface, use the appletalk access-group interface configuration command. To remove the access list use the no form of this command.
appletalk access-group access-list-number
no appletalk access-group [access-list-number]Syntax Description
Default
No access lists are predefined.
Command Mode
Interface configuration
Usage Guidelines
The appletalk access-group command applies data-packets filter to an interface. These filters check data packets being sent out an interface. If the packets' source network has access denied, these packets are not transmitted but rather are discarded.
Data-packet filters use access lists that define conditions for networks and cable ranges only. They ignore any zone information that may be in the access list.
When you apply a data-packet filter to an interface, you should ensure that all networks or cable ranges within a zone are governed by the same filters.
Example
The following example applies access list 601 to Ethernet interface 0:
access-list 601 deny cable-range 1-10access-list 601 permit other-accessinterface ethernet 0appletalk access-group 601Related Commands
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list within
appletalk distribute-list in
appletalk distribute-list outappletalk address
To enable nonextended AppleTalk routing on an interface, use the appletalk address interface configuration command. To disable nonextended AppleTalk routing, use the no form of this command.
appletalk address network.node
no appletalk address [network.node]Syntax Description
Default
Disabled
Command Mode
Interface configuration
Usage Guidelines
You must enable routing on the interface before assigning zone names.
Specifying an address of 0.0, or 0.node places the interface into discovery mode. When in this mode, the access server attempts to determine network address information from another router or access server on the network. You also can enable discovery mode with the appletalk discovery command. Discovery mode does not run over serial lines.
Example
The following example enables nonextended AppleTalk routing on Ethernet interface 0:
appletalk routinginterface ethernet 0appletalk address 1.129Related Commands
access-list cable-range
appletalk discovery
appletalk zoneappletalk alternate-addressing
To display network numbers in a two-octet format, use the appletalk alternate-addressing global configuration command. To return to displaying network numbers in the format network.node, use the no form of this command.
appletalk alternate-addressing
no appletalk alternate-addressingSyntax Description
This command has no arguments or keywords.
Default
Addresses are displayed in network.node format.
Command Mode
Global configuration
Usage Guidelines
The appletalk alternate-addressing command displays cable ranges in the alternate format wherever applicable. This format consists of printing the upper and lower bytes of a network number as 8-bit decimal values separated by a decimal point. For example, the cable range 511-512 would be printed as 1.255-2.0.
Example
The following example enables the display of network numbers in a two-octet format:
appletalk alternate-addressingappletalk arp interval
To specify the time interval between the retransmission of Address Resolution Protocol (ARP) packets, use the appletalk arp interval global configuration command. To restore both default intervals, use the no form of this command.
appletalk arp [probe | request] interval interval
no appletalk arp [probe | request] interval intervalSyntax Description
Default
If you omit all keywords, probe is the default.
probe—200 milliseconds
request—1000 millisecondsCommand Mode
Global configuration
Usage Guidelines
The time interval you specify takes effect immediately.
Lengthening the interval between AARP transmissions permits responses from devices that respond slowly, such as printers and overloaded file servers, to be received.
AARP uses the appletalk arp probe interval value when obtaining the address of the local access server. This is done when the access server is being configured. You should not change the default value of this interval unless absolutely necessary, because this value directly modifies the AppleTalk dynamic node assignment algorithm.
AARP uses the appletalk arp request interval value when attempting to determine the hardware address of another node so that it can deliver a packet. You can change this interval as desired, although the default value is optimal for most sites.
The no appletalk arp command restores both the probe and request intervals specified in the appletalk arp interval and appletalk arp retransmit-count commands to their default values.
Example
In the following example, the AppleTalk ARP retry interval is lengthened to 2000 milliseconds:
appletalk arp request interval 2000Related Commands
appletalk arp retransmit-count
appletalk arp-timeout
appletalk glean-packets
show appletalk globalsappletalk arp retransmit-count
To specify the number of AARP probe or request transmissions, use the appletalk arp retransmit-count global configuration command. To restore both default values, use the no form of this command.
appletalk arp [probe | request] retransmit-count number
no appletalk arp [probe | request] retransmit-count numberSyntax Description
Default
If you omit the keyword, probe is the default.
probe—10
request—5Command Mode
Global configuration
Usage Guidelines
The value you specify takes effect immediately.
Increasing the number of retransmissions permits responses from devices that respond slowly, such as printers and overloaded file servers, to be received.
AARP uses the appletalk arp probe retransmit-count value when obtaining the address of the local router. This is done when the access server is being configured. You should not change the default value unless absolutely necessary, because this value directly modifies the AppleTalk dynamic node assignment algorithm.
AARP uses the appletalk arp request retransmit-count value when attempting to determine the hardware address of another node so that it can deliver a packet. You can change this interval as desired, although the default value is optimal for most sites.
The no appletalk arp command restores both the probe and request intervals specified in the appletalk arp interval and appletalk arp retransmit-count commands to their default values.
Example
The following example specifies an AARP retransmission count of 10 for AARP packets that are requesting the hardware address of another node on the network:
appletalk arp request retransmit-count 10Related Commands
appletalk arp interval
appletalk arp-timeout
appletalk glean-packets
show appletalk globalsappletalk arp-timeout
To specify the interval at which entries are aged out of the ARP table, use the appletalk arp-timeout interface configuration command. To return to the default timeout, use the no form of this command.
appletalk arp-timeout interval
no appletalk arp-timeout [interval]Syntax Description
interval
Time, in minutes, after which an entry is removed from the AppleTalk ARP table. The default is 240 minutes, or 4 hours.
Default
240 minutes (4 hours)
Command Mode
Interface configuration
Example
The following example changes the ARP timeout interval on Ethernet interface 0 to 2 hours:
interface ethernet 0appletalk cable-range 2-2appletalk arp-timeout 120Related Commands
appletalk arp interval
appletalk arp retransmit-count
appletalk glean-packetsappletalk aurp tickle-time
To set the AURP last-heard-from timer value, use the appletalk aurp tickle-time interface configuration command. To return to the default last-heard-from timer value, use the no form of this command.
appletalk aurp tickle-time seconds
no appletalk aurp tickle-time [seconds]Syntax Description
seconds
Time-out value, in seconds. This value can be a number in the range 30 to infinity. The default is 90 seconds.
Default
90 seconds
Command Mode
Interface configuration
Usage Guidelines
If the tunnel peer has not been heard from with the time specified by the least-heard-from timer value, the access server sends tickle packets to check that the tunnel peer is still up.
You can use this command only on tunnel interfaces.
Example
The following example changes the AURP last-heard-from timer value on tunnel interface 0 to 120 seconds:
interface tunnel 0appletalk aurp tickle-time 120Related Command
show appletalk interface
appletalk aurp update-interval
To set the minimum interval between AURP routing updates, use the appletalk aurp update-interval global configuration command. To return to the default interval, use the no form of this command.
appletalk aurp update-interval seconds
no appletalk aurp update-interval [seconds]Syntax Description
seconds
AURP routing update interval, in seconds. This interval must be a multiple of 10. The default is 30 seconds.
Default
30 seconds
Command Mode
Global configuration
Usage Guidelines
The AURP routing update interval applies only to tunnel interfaces.
Example
The following example changes the AURP routing update interval on tunnel interface 0 to 40 seconds:
interface tunnel 0appletalk aurp update-interval 40Related Command
appletalk cable-range
To enable an extended AppleTalk network, use the appletalk cable-range interface configuration command. To disable an extended AppleTalk network, use the no form of this command.
appletalk cable-range cable-range [network.node]
no appletalk cable-range cable-range [network.node]Syntax Description
Default
Disabled
Command Mode
Interface configuration
Usage Guidelines
You must enable routing on the interface before assigning zone names.
Specifying a cable range value of 0-0 places the interface into discovery mode. When in this mode, the access server attempts to determine cable range information from another router or access server on the network. You also can enable discovery mode with the appletalk discovery command. Discovery mode does not run over serial lines.
Example
The following example assigns a cable range of 3 to 3 to the interface:
interface ethernet 0appletalk cable-range 3-3Related Commands
appletalk address
appletalk discovery
appletalk zoneappletalk checksum
To enable the generation and verification of checksums for all AppleTalk packets (except routed packets), use the appletalk checksum global configuration command. To disable checksum generation and verification, use the no form of this command.
appletalk checksum
no appletalk checksumSyntax Description
This command has no arguments or keywords.
Default
Enabled
Command Mode
Global configuration
Usage Guidelines
When the appletalk checksum command is enabled, the access server discards incoming DDP packets when the checksum is nonzero and is incorrect, and when the access server is the final destination for the packet.
You might want to disable checksum generation and verification if you have very early devices, such as LaserWriter printers, that cannot receive packets that contain checksums.
Our routers and access servers do not check checksums on routed packets, thereby eliminating the need to disable checksum to allow operation of some networking applications.
Example
The following example disables the generation and verification of checksums:
no appletalk checksumRelated Command
appletalk client-mode
To allow users to access an AppleTalk zone when dialing into an asychronous line on the access server, use the interface configuration async command appletalk client-mode. Use the no form of the command to disable this configuration.
appletalk client-mode
no appletalk client-modeSyntax Description
This command has no arguments or keywords.
Default
Client mode is disabled.
Command Mode
Interface configuration
Usage Guidelines
This command allows an asynchronous interface to be used by a remote client to access one or more AppleTalk zones, use networked peripherals, and share files with other Macintosh users.
Before a client can access an AppleTalk zone on the remote network, you must first define the interface as async, the encapsulation as PPP, and create an internal network for the Macintosh client by using the appletalk virtual-net command.
This configuration does not support routing.
Example
The following example allows a user to access AppleTalk functionality on an asynchronous line using PPP:
appletalk client-modeRelated Commands
A dagger (†) indicates that the command is documented in another chapter. Two daggers (††) indicates that the command is documented in the Cisco Access Connection Guide.
appletalk virtual-net
encapsulation†
interface async†
ppp††appletalk discovery
To place an interface into discovery mode, use the appletalk discovery interface configuration command. To disable discovery mode, use the no form of this command.
appletalk discovery
no appletalk discoverySyntax Description
This command has no arguments or keywords.
Default
Discovery mode is disabled.
Command Mode
Interface configuration
Usage Guidelines
If an interface is connected to a network that has at least one other operational AppleTalk router, you can dynamically configure the interface using discovery mode. In discovery mode, an interface acquires network address information about the attached network from an operational router and then uses this information to configure itself.
If you enable discovery mode on an interface, then when the access server is starting up, that interface must acquire information to configure itself from another operational router on the attached network. If no operational router is present on the connected network, the interface will not start up.
If you do not enable discovery mode, then when the access server is starting up, the interface must acquire its configuration from memory. If the stored configuration is not complete, the interface will not start up. If there is another operational router on the connected network, the access server will verify the interface's stored configuration with that router. If there is any discrepancy, the interface will not start up. If there are no neighboring operational routers, the access server will assume the interface's stored configuration is correct and will start up.
Once an interface is operational, it can seed the configurations of other routers on the connected network regardless of whether you have enabled discovery mode on any of the routers.
If you enable appletalk discovery and the interface is restarted, another operational router must still be present on the directly connected network in order for the interface to start up.
It is not advisable to have all routers on a network configured with discovery mode enabled. If all routers were to restart simultaneously (for instance, after a power failure), the network would become inaccessible until at least one router were restarted with discovery mode disabled.
You also can enable discovery mode by specifying an address of 0.0. in the appletalk address command or a cable range of 0-0 in the appletalk cable-range command.
Discovery mode is useful when you are changing a network configuration or when you are adding an access server to an existing network.
Discovery mode does not run over serial lines.
Use the no appletalk discovery command to disable discovery mode. If the interface is not operational when you issue this command (that is, if you have not issued an appletalk zone command on the interface), you must configure the zone name next. If the interface is operational when you issue the no appletalk discovery command, you can save the current configuration (in running memory) in nonvolatile memory by issuing the copy running-config startup-config EXEC command.
Example
The following example enables discovery mode on Ethernet interface 0:
interface ethernet 0appletalk discoveryRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
appletalk address
appletalk cable-range
appletalk zone
show appletalk interface
copy running-config startup-config †appletalk distribute-list in
To filter routing updates received from other routers over a specified interface, use the appletalk distribute-list in interface configuration command. To remove the routing table update filter, use the no form of this command.
appletalk distribute-list access-list-number in
no appletalk distribute-list [access-list-number in]Syntax Description
Default
No routing filters are preconfigured.
Command Mode
Interface configuration
Usage Guidelines
The appletalk distribute-list in command controls which networks and cable ranges in routing updates will be entered into the local routing table.
Filters for incoming routing updates use access lists that define conditions for networks and cable ranges only. They cannot use access lists that define conditions for zones. All zone information in an access list assigned to the interface with the appletalk distribute-list in command is ignored.
An input distribution list filters network numbers received in an incoming routing update. When AppleTalk routing updates are received on the specified interface, each network number and cable range in the update is checked against the access list. Only network numbers and cable ranges that are permitted by the access list are inserted into the access server's AppleTalk routing table.
Example
The following example prevents the access server from accepting routing table updates received from network 10 and on Ethernet interface 3:
access-list 601 deny network 10access-list 601 permit other-accessinterface ethernet 3appletalk distribute-list 601 inRelated Commands
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list within
appletalk distribute-list outappletalk distribute-list out
To filter routing updates transmitted to other routers, use the appletalk distribute-list out interface configuration command. To remove the routing table update filter, use the no form of this command.
appletalk distribute-list access-list-number out
no appletalk distribute-list [access-list-number out]Syntax Description
Default
No routing filters are preconfigured.
Command Mode
Interface configuration
Usage Guidelines
The appletalk distribute-list out command controls which network numbers and cable ranges are included in routing updates and which zones the local router includes in its GetZoneList replies.
When an AppleTalk routing update is generated on the specified interface, each network number and cable range in the routing table is checked against the access list. If an undefined access list is used, all network numbers and cable ranges are added to the routing update. Otherwise, if an access list is defined, only network numbers and cable ranges that satisfy the following conditions are added to the routing update:
•
•
•
A zone is considered partially obscured when one or more network numbers or cable ranges that are members of the zone is explicitly or implicitly denied.
When a ZIP GetZoneList reply is generated, only zones that satisfy the following conditions are included:
•
•
•
Example
The following example prevents routing updates sent on Ethernet 0 from mentioning any networks in zone Admin:
access-list 601 deny zone Adminaccess-list 601 permit other-accessinterface ethernet 0appletalk distribute-list 601 outRelated Commands
access-list additional-zones
access-list zone
appletalk distribute-list in
appletalk getzonelist-filter
appletalk permit-partial-zonesappletalk domain-group
To assign a predefined domain number to an interface, use the appletalk domain-group interface configuration command. To remove an interface from a domain, use the no form of this command.
appletalk domain-group domain-number
no appletalk domain-group [domain-number]Syntax Description
Default
No domain number is assigned to the interface.
Command Mode
Interface configuration
Usage Guidelines
Before you can assign a domain number to an interface, you must create a domain with that domain number using the appletalk domain name global configuration command.
One or more interfaces on a router can be members of the same domain. However, a given interface can be in only one domain.
After you assign AppleTalk interenterprise features to an AppleTalk domain, you can attribute those features to a tunnel interface configured for AURP by assigning the AppleTalk domain-group number to the tunnel interface.
Examples
The following example assigns domain group 1 to Ethernet interface 0:
interface ethernet 0appletalk domain-group 1The following example assigns domain group 1 to tunnel interface 2. Assuming that domain group 1 is configured for AppleTalk interenterprise and that tunnel interface 2 is configured for AURP, any features configured for domain group 1 are ascribed to AURP on tunnel interface 2.
interface tunnel 2 appletalk domain-group 1Related Command
appletalk domain name
show appletalk domainappletalk domain hop-reduction
To reduce the hop-count value in packets traveling between segments of a domains, use the appletalk domain hop-reduction global configuration command. To disable the reduction of hop-count values, use the no form of this command.
appletalk domain domain-number hop-reduction
no appletalk domain domain-number hop-reductionSyntax Description
Default
The hop count is set to 1 each time a packet passes through the access server.
Command Mode
Global configuration
Usage Guidelines
Before you can specify the appletalk domain hop-reduction global configuration command, you must have created a domain with that domain number using the appletalk domain name global configuration command.
DDP and RTMP both impose a 15-hop limit when forwarding packets. A packet ages out and is no longer forwarded when its hop count reaches 16. To overcome RTMP's 15-hop limit, the domain access server represents all networks accessible to routers on its local network as one hop away. This allows access servers to maintain and send routing information about networks beyond the 15-hop limit and achieve full connectivity.
When you enable hop-count reduction, the hop count in a packet is set to 1 as it passes from one domain to another. For example, if the hop count was 8 when the packet left one domain, its hop count is 1 when it enters the next segment of the domain.
Hop reduction is performed only on packets traveling to and from interfaces that are configured for AppleTalk Enhanced IGRP.
Example
The following example enables hop-count reduction for domain number 1:
appletalk domain 1 name Deltaappletalk domain 1 hop-reductionRelated Command
appletalk domain name
To create a domain and assign it a name and number, use the appletalk domain name global configuration command. To remove a domain, use the no form of this command.
appletalk domain domain-number name domain-name
no appletalk domain domain-number name domain-nameSyntax Description
Default
No domain is created.
Command Mode
Global configuration
Example
The following example creates domain number 1 and assigns it the name Delta:
appletalk domain 1 name DeltaRelated Command
appletalk domain remap-range
To remap ranges of AppleTalk network numbers or cable ranges between two segments of a domain, use the appletalk domain remap-range global configuration command. To disable remapping, use the no form of this command.
appletalk domain domain-number remap-range {in | out} start-range-end-range
no appletalk domain domain-number remap-range {in | out} [start-range-end-range]Syntax Description
Default
No remapping is performed.
Command Mode
Global configuration
Usage Guidelines
Before you can specify the appletalk domain remap-range command, you must create a domain with that domain number using the appletalk domain name global configuration command.
Ensure that the domain range you specify does not overlap any network addresses or cable ranges that already exist in the internetwork.
Each domain can have two domain mapping ranges to which to remap all incoming or outgoing network numbers or cable ranges.
Example
The following example remaps all network addresses and cable ranges for packets inbound from domain 1 into the address range 1000 to 1999. It also remaps packets inbound from domain 2.
appletalk domain 1 name Deltaappletalk domain 2 name Echoappletalk domain 1 remap-range in 10000-10999appletalk domain 2 remap-range in 20000-20999Related Command
appletalk domain name
show appletalk remapappletalk eigrp-splithorizon
To configure split horizon, use the appletalk eigrp-splithorizon interface configuration command. To disable split horizon, use the no form of this command.
appletalk eigrp-splithorizon
no appletalk eigrp-splithorizonSyntax Description
This command has no arguments or keywords.
Default
Enabled
Command Mode
Interface configuration
Usage Guidelines
If you enable split horizon on an interface, AppleTalk Enhanced IGRP update and query packets are not sent if this interface is the next hop to that destination. This reduces the number of Enhanced IGRP packets of the network.
Split horizon blocks information about routes from being advertised by a router or access server out any interface from which that information originated. This behavior usually optimizes communication among multiple access servers, particularly when links are broken. However, with nonbroadcast networks, such as Frame Relay and SMDS, situations can arise for which this behavior is less than ideal. For these situations, you may wish to disable split horizon.
Example
The following example disables split horizon on serial interface 0:
interface serial 0no appletalk eigrp-splithorizonappletalk eigrp-timers
To configure the AppleTalk Enhanced IGRP hello packet interval and the route hold time, use the appletalk eigrp-timers interface configuration command. To return to the default values for these timers, use the no form of this command.
appletalk eigrp-timers hello-interval hold-time
no appletalk eigrp-timers hello-interval hold-timeSyntax Description
Default
hello-interval: 5 seconds
hold-time: 45 secondsCommand Mode
Interface configuration
Usage Guidelines
If the current value for the hold time is less than two times the hello interval, the hold time is reset to three time the hello interval.
If an access server does not receive a hello packet within the specified hold time, routes through the access server are considered available.
Increasing the hold time delays route convergence across the network.
Note
Example
The following example changes the hello interval to 10 seconds:
interface ethernet 0appletalk eigrp-timers 10 45appletalk event-logging
To log significant network events, use the appletalk event-logging global configuration command. To disable this function, use the no form of this command.
appletalk event-logging
no appletalk event-loggingSyntax Description
This command has no arguments or keywords.
Default
Events are not logged.
Command Mode
Global configuration
Usage Guidelines
The appletalk event-logging command logs a subset of messages produced by debug appletalk command. This includes routing changes, zone creation, port status, and address.
Example
The following example shows the use of the appletalk event-logging command:
appletalk routingappletalk event-loggingRelated Command
appletalk free-trade-zone
To establish a free-trade zone, use the appletalk free-trade-zone interface configuration command. To disable a free-trade zone, use the no form of this command.
appletalk free-trade-zone
no appletalk free-trade-zoneSyntax Description
This command has no arguments or keywords.
Default
Free-trade zones are not preconfigured.
Command Mode
Interface configuration
Usage Guidelines
A free-trade zone is a part of an AppleTalk internet that is accessible by two other parts of the internet, neither of which can access the other. You might want to create a free-trade zone to allow the exchange of information between two organizations that otherwise want to keep their internets isolated from each other or that do not have physical connectivity with one another.
You apply the appletalk free-trade-zone command to each interface attached to the common-access network. This command has the following effect on the interface:
•
•
•
The GZL for free-trade zone nodes will be empty.
Example
The following example establishes a free-trade zone on Ethernet interface 0:
interface ethernet 0appletalk cable-range 5-5appletalk zone FreeAccessZoneappletalk free-trade-zoneappletalk getzonelist-filter
To filter GetZoneList (GZL) replies, use the appletalk getzonelist-filter interface configuration command. To remove a filter, use the no form of this command.
appletalk getzonelist-filter access-list-number
no appletalk getzonelist-filter [access-list-number]Syntax Description
Default
No filters are preconfigured.
Command Mode
Interface configuration
Usage Guidelines
GZL filters define conditions for zones only. They cannot use access lists that define conditions for network numbers or cable ranges. All network number and cable range information in the access list assigned to an interface with the appletalk getzonelist-filter command is ignored.
Using a GZL filter is not a complete replacement for anonymous network numbers. In order to prevent users from seeing a zone, all routers must implement the GZL filter. If there are any routers from other vendors on the network, the GZL filter will not have a consistent effect.
The Macintosh Chooser uses ZIP GZL requests to compile a list of zones from which the user can select services. Any access server on the same network as the Macintosh can respond to these requests with a GZL reply. You can create a GZL filter on the access server to control which zones the access server mentions in its GZL replies. This has the effect of controlling the list of zones that are displayed by the Chooser.
When defining GZL filters, you should ensure that all routers on the same internetwork filter GZL reply identically. Otherwise, the Chooser will list different zone depending upon which router responded to the request. Also, inconsistent filters can result in zones appearing and disappearing every few seconds when the user remains in the Chooser. Because of these inconsistencies, you should normally use the appletalk getzonelist-filter command only when all routers in the internetwork are our routers or access servers, unless the other vendors' routers have a similar feature.
Replies to GZL requests are also filtered by any appletalk distribute-list out filter that has been applied to the same interface. You need to specify an appletalk getzonelist-filter command only if you want additional filtering to be applied to GZL replies. This filter is rarely needed except to eliminate zones that do not contain user services.
Example
The following example does not include the zone Engineering in GZL replies sent out Ethernet interface 0:
access-list 600 deny zone Engineeringinterface Ethernet 0appletalk getzonelist-filter 600Related Commands
access-list additional-zones
access-list zone
appletalk distribute-list out
appletalk permit-partial-zonesappletalk glean-packets
To derive AARP table entries from incoming packets, use the appletalk glean-packets interface configuration command. To disable this function, use the no form of this command.
appletalk glean-packets
no appletalk glean-packetsSyntax Description
This command has no arguments or keywords.
Default
Enabled
Command Mode
Interface configuration
Usage Guidelines
The access server automatically derives AARP table entries from incoming packets. This process is referred to as "gleaning." Gleaning speeds up the process of populating the AARP table.
Our implementation of AppleTalk does not forward packets with local source and destination network addresses. This does not conform with the definition of AppleTalk in Apple Computer's Inside AppleTalk publication. However, this is designed to prevent any possible corruption of the AARP table in any AppleTalk node that is performing MAC-address gleaning.
Example
The following example disables the building of the AARP table using information derived from incoming packets:
interface ethernet 0appletalk address 33no appletalk glean-packetsappletalk ignore-verify-errors
To allow an access server to start functioning even if the network is misconfigured, use the appletalk ignore-verify-errors global configuration command. To disable this function, use the no form of this command.
appletalk ignore-verify-errors
no appletalk ignore-verify-errorsSyntax Description
This command has no arguments or keywords.
Default
Disabled
Command Mode
Global configuration
Usage Guidelines
Use this command only under the guidance of a customer engineer or other service representative. an access server that starts routing in a misconfigured network will serve only to make a bad situation worse; it will not correct other misconfigured routers.
Example
The following example allows an access server to start functioning without verifying network misconfiguration:
no appletalk ignore-verify-errors 0appletalk iptalk
To enable IPTalk encapsulation on an interface that already has a configured IP address, use the appletalk iptalk interface configuration command. To disable IPTalk encapsulation, use the no form of this command.
appletalk iptalk network.node zone
no appletalk iptalk [network.node zone]Syntax Description
Default
Disabled
Command Mode
Interface configuration
Usage Guidelines
Use the appletalk iptalk interface subcommand to enable IPTalk encapsulation on an interface that already has a configured IP address. This command encapsulates AppleTalk in IP packets in a manner compatible with the Columbia AppleTalk Package (CAP) IPTalk and the Kinetics IPTalk (KIP) implementations.
This command allows AppleTalk communication with UNIX hosts running older versions of CAP that do not support native AppleTalk EtherTalk encapsulations. Typically, Apple Macintosh users wishing to communicate with these servers would have their connections routed through a Kinetics FastPath router running KIP (Kinetics IP) software.
This command is provided as a migration command; newer versions of CAP provide native AppleTalk EtherTalk encapsulations, and the IPTalk encapsulation is no longer required. Our implementation of IPTalk assumes that AppleTalk is already being routed on the backbone, because there is currently no LocalTalk hardware interface for our routers and access servers.
Our implementation of IPTalk does not support manually configured AppleTalk-to-IP address mapping (atab). The address mapping provided is the same as the Kinetics IPTalk implementation when the atab facility is not enabled. This address mapping functions as follows: The IP subnet mask used on the access server Ethernet interface on which IPTalk is enabled is inverted (ones complement). This result is then masked against 255 (0xFF hexadecimal). This is then masked against the low-order 8 bits of the IP address to obtain the AppleTalk node number.
Example
The following example configuration illustrates how to configure IPTalk:
interface ethernet 0ip address 172.16.1.118 255.255.255.0appletalk address 20.129appletalk zone Native AppleTalkappletalk iptalk 30.0 UDPZoneIn this configuration, the IP subnet mask would be inverted:
255.255.255.0 inverted yields: 0.0.0.255Masked with 255 it yields 255, and masked with the low-order 8 bits of the interface IP address it yields 118.
This means that the AppleTalk address of the Ethernet 0 interface seen in the UDPZone zone is 30.118. This caveat should be noted, however: Should the host field of an IP subnet mask for an interface be more than 8 bits wide, it will be possible to obtain conflicting AppleTalk node numbers. For instance, consider a situation where the subnet mask for the Ethernet 0 interface above is 255.255.240.0, meaning that the host field is 12 bits wide.
Related Command
appletalk iptalk-baseport
To specify the UDP port number when configuring IPTalk, use the appletalk iptalk-baseport global configuration command. To return to the default UDP port number, use the no form of this command.
appletalk iptalk-baseport port-number
no appletalk iptalk-baseport [port-number]Syntax Description
port-number
First UDP port number in the range of UDP ports used in mapping AppleTalk well-known DDP socket numbers to UDP ports.
Default
768
Command Mode
Global configuration
Usage Guidelines
Implementations of IPTalk prior to April 1988 mapped well-known DDP socket numbers to privileged UDP ports starting at port number 768. In April 1988, the NIC assigned a range of UDP ports for the defined DDP well-known sockets starting at UDP port number 200 and assigned these ports the names at-nbp, at-rtmp, at-echo, and at-zis. Release 6 and later of the CAP program dynamically decides which port mapping to use. If there are no AppleTalk service entries in the UNIX system's /etc/services file, CAP uses the older mapping starting at UDP port number 768.
The default UDP port mapping supported by our implementation of IPTalk is 768. If there are AppleTalk service entries in the UNIX system's /etc/services file, you should specify the beginning of the UDP port mapping range with the appletalk iptalk-baseport command.
Example
The following example sets the base UDP port number to 200, which is the official NIC port number, and configures IPTalk on Ethernet interface 0:
appletalk routingappletalk iptalk-baseport 200!interface ethernet 0ip address 172.16.1.118 255.255.255.0appletalk address 20.129appletalk zone Native AppleTalkappletalk iptalk 30.0 UDPZoneRelated Command
appletalk lookup-type
To specify which NBP service types are retained in the name cache, use the appletalk lookup-type global configuration command. To disable the caching of services, use the no form of this command.
appletalk lookup-type service-type
no appletalk lookup-type [service-type]Syntax Description
Default
The ciscoRouter entries are retained in the name cache.
Command Mode
Global configuration
Usage Guidelines
You can issue multiple appletalk lookup-type commands. The access server does not query the entire zone, but instead polls only the connected networks. This reduces network overhead and means that the name cache contains entries only for selected services that are in a directly connected network or zone, not for all the selected services in a network or zone.
lists some AppleTalk service types.
Table 17-1 AppleTalk Service Types
ciscoRouter
Active adjacent Cisco routers; this service type is initially enabled by default.
IPADDRESS
Addresses of active MacIP server.
IPGATEWAY
Names of active MacIP server.
SNMP Agent
Active SNMP agents in Cisco routers.
AppleRouter
Apple internet router.
FastPath
Shiva LocalTalk gateway.
GatorBox
Cayman LocalTalk gateway.
systemRouter
Cisco's OEM router name.
Workstation
Macintosh running System 7; the machine type also is defined, so it is possible to easily identify all user nodes.
1 Type all entries exactly as shown. Spaces are valid. Do not use leading or trailing spaces when entering service names.
If you omit the service-type argument from the no appletalk lookup-type command, no service types except those relating to our routers and access servers are cached.
To display information that is stored in the name cache about the services being used by our routers and other vendors' routers, use the show appletalk name-cache command.
If a neighboring router is not our access server or is running our software that is earlier than Release 9.0, it is possible the router will be unable to determine the name of the neighbor. This is normal behavior, and there is no workaround.
If AppleTalk routing is enabled, enabling SNMP will automatically enable SNMP over DDP.
Name cache entries are deleted after several interval periods expire without being refreshed. (You set the interval with the appletalk name-lookup-interval command.) At each interval, a single request is sent via each interface that has valid addresses.
Example
The following example caches information about GatorBox services, Apple internet routers, MacIP services, and workstations. Information about our routers and access servers is automatically cached.
appletalk lookup GatorBoxappletalk lookup AppleRouterappletalk lookup IPGATEWAYappletalk lookup WorkstationRelated Commands
appletalk name-lookup-interval
show appletalk name-cache
show appletalk nbpappletalk macip dynamic
To allocate IP addresses to dynamic MacIP clients, use the appletalk macip dynamic global configuration command. To delete a MacIP dynamic address assignment, use the no form of this command.
appletalk macip dynamic ip-address [ip-address] zone server-zone
no appletalk macip [dynamic ip-address [ip-address] zone server-zone]Syntax Description
Default
No IP addresses are allocated.
Command Mode
Global configuration
Usage Guidelines
Use the appletalk macip dynamic command when configuring MacIP.
Dynamic clients are those that accept any IP address assignment within the dynamic range specified.
In general, it is recommended that you do not use fragmented address ranges in configuring ranges for MacIP. However, if this is unavoidable, use the appletalk macip dynamic command to specify as many addresses or ranges as required and use the appletalk macip static command to assign a specific address or address range.
To shut down all running MacIP services, use the following command:
no appletalk macip
To delete a particular dynamic address assignment from the configuration, use the following command:
no appletalk macip dynamic ip-address [ip-address] zone server-zone
Example
The following example illustrates MacIP support for dynamically addressed MacIP clients with IP addresses in the range 172.16.1.28 to 172.16.1.44.
!This global statement specifies the MacIP server address and zone:appletalk macip server 172.16.1.27 zone Engineering!!This global statement identifies the dynamically addressed clients:appletalk macip dynamic 172.16.1.28 172.16.1.44 zone Engineering!!These statements assign the IP address and subnet mask for Ethernet interface 0:interface ethernet 0ip address 172.16.1.27 255.255.255.0!!This global statement enables AppleTalk routing on the router.appletalk routing!!These statements enable AppleTalk routing on the interface and!set the zone name for the interfaceinterface ethernet 0appletalk cable-range 69-69 69.128appletalk zone EngineeringRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
appletalk macip server
appletalk macip static
ip address †
show appletalk macip-serversappletalk macip server
To establish a MacIP server for a zone, use the appletalk macip server global configuration command. To shut down a MACIP server, use the no form of this command.
appletalk macip server ip-address zone server-zone
no appletalk macip [server ip-address zone server-zone]Syntax Description
Default
No MacIP server is established.
Command Mode
Global configuration
Usage Guidelines
Use the appletalk macip server command when configuring MacIP.
You can configure only one MacIP server per AppleTalk zone, and the server must reside in the default zone. A server is not registered via NBP until at least one MacIP resource is configured.
You can configure multiple MacIP servers for an access server, but you can assign only one MacIP server to a particular zone and only one IP interface to each MacIP server. In general, you must be able to establish an alias between the IP address you assign with the appletalk macip server command and an existing IP interface. For implementation simplicity, it is suggested that the address specified in this command match an existing IP interface address.
To shut down all active MacIP servers, use the following command:
no appletalk macip
To delete a specific MacIP server from the MacIP configuration, use the following command:
no appletalk macip server ip-address zone server-zone
Example
The following example establishes a MacIP server on Ethernet interface 0 in AppleTalk zone Engineering. It then assigns an IP address to the Ethernet interface and enables AppleTalk routing on the access server and the Ethernet interface.
appletalk macip server 172.16.1.27 zone Engineeringip address 172.16.1.27 255.255.255.0appletalk routinginterface ethernet 0appletalk cable-range 69-69 69.128appletalk zone EngineeringRelated Commands
A dagger (†) indicates that the command is documented in another chapter.
appletalk macip dynamic
appletalk macip static
ip address †
show appletalk macip-serversappletalk macip static
To allocate an IP address to be used by a MacIP client that has reserved a static IP address, use the appletalk macip static global configuration command. To delete a MacIP static address assignment, use the no form of this command.
appletalk macip static ip-address [ip-address] zone server-zone
no appletalk macip [static ip-address [ip-address] zone server-zone]Syntax Description
Default
No IP address is allocated.
Command Mode
Global configuration
Usage Guidelines
Use the appletalk macip static command when configuring MacIP.
Static addresses are for users who require fixed addresses for IP name domain name service and for administrators who do want addresses to change so they can always know who has what IP address.
In general, it is recommended that you do not use fragmented address ranges in configuring ranges for MacIP. However, if this is unavoidable, use the appletalk macip dynamic command to specify as many addresses or ranges as required, and then use the appletalk macip static command to assign a specific address or address range.
To shut down all running MacIP services, use the following command:
no appletalk macip
To delete a particular static address assignment from the configuration, use the following command:
no appletalk macip static ip-address [ip-address] zone server-zone
Example
The following example illustrates MacIP support for MacIP clients with statically allocated IP addresses. The IP addresses range is from 172.16.1.50 to 172.16.1.66. The three nodes that have the specific addresses are 172.16.1.81, 172.16.1.92, and 172.16.1.101.
! This global statement specifies the MacIP server address and zone:appletalk macip server 172.16.1.27 zone Engineering!!These global statements identify the statically addressed clients:appletalk macip static 172.16.1.50 172.16.1.66 zone Engineeringappletalk macip static 172.16.1.81 zone Engineeringappletalk macip static 172.16.1.92 zone Engineeringappletalk macip static 172.16.1.101 zone Engineering!! These statements assign the IP address and subnet mask for Ethernet interface 0:interface ethernet 0ip address 172.16.1.27 255.255.255.0!! This global statement enables AppleTalk routing on the router.appletalk routing!! These statements enable AppleTalk routing on the interface and! set the zone name for the interfaceinterface ethernet 0appletalk cable-range 69-69 69.128appletalk zone EngineeringRelated Commands
appletalk macip dynamic
appletalk macip server
ip address
show appletalk macip-serversappletalk name-lookup-interval
To set the interval between service pollings by the access server on its AppleTalk interfaces, use the appletalk name-lookup-interval global configuration command. To purge the name cache and return to the default polling interval, use the no form of this command.
appletalk name-lookup-interval seconds
no appletalk name-lookup-interval [seconds]Syntax Description
seconds
Interval, in seconds, between NBP lookup pollings. This can be any positive integer; there is no upper limit. It is recommended that you use an interval between 300 seconds (5 minutes) and 1200 seconds (20 minutes). The smaller the interval, the more packets are generated to handle the names. Specifying an interval of 0 purges all entries from the name cache and disables the caching of service type information that is controlled by the appletalk lookup-type command, including the caching of information about our routers and access servers.
Default
0, which purges all entries from the name cache and disables the caching of service type information.
Command Mode
Global configuration
Usage Guidelines
The access server collects name information only for entities on connected AppleTalk networks.This reduces overhead.
If you enter an interval of 0, all polling for services (except ciscoRouter) is disabled. If you reenter a nonzero value, the configuration specified by the appletalk lookup-type command is reinstated. You cannot disable the lookup of ciscoRouter.
Example
The following example sets the lookup interval to 20 minutes:
appletalk name-lookup-interval 1200Related Commands
appletalk lookup-type
show appletalk name-cacheappletalk permit-partial-zones
To permit access to the other networks in a zone when access to one of those networks is denied, use the appletalk permit-partial-zones global command. To return to the default behavior, which is to deny access to all networks in a zone if access to one of those networks is denied, use the no form of this command.
appletalk permit-partial-zones
no appletalk permit-partial-zonesSyntax Description
This command has no arguments or keywords.
Default
Access to other networks is denied.
Command Mode
Global configuration
Usage Guidelines
The permitting of partial zones provides IP-style access control.
When you enable the use of partial zones, the NBP protocol cannot ensure the consistency and uniqueness of name bindings.
If you enable the use of partial zones, access control behavior is compatible with that of software Release 8.3.
Example
The following example allows partial zones:
appletalk permit-partial-zonesRelated Commands
access-list additional-zones
access-list zone
appletalk distribute-list out
appletalk getzonelist-filterappletalk pre-fdditalk
To enable the recognition of pre-FDDITalk packets, use the appletalk pre-fdditalk global configuration command. To disable this function, use the no form of this command.
appletalk pre-fdditalk
no appletalk pre-fdditalkSyntax Description
This command has no arguments or keywords.
Default
Pre-FDDITalk packets are not recognized.
Command Mode
Global configuration
Usage Guidelines
Use this command to have the access server recognize AppleTalk packets sent on the FDDI ring from routers running Cisco software releases prior to Release 9.0(3) or Release 9.1(2).
Example
The following example disables the recognition of pre-FDDITalk packets:
no appletalk pre-fdditalkappletalk protocol
To specify the routing protocol to use on an interface, use the appletalk protocol interface configuration command. To disable a routing protocol, use the no form of this command.
appletalk protocol {aurp | eigrp | rtmp}
no appletalk protocol {aurp | eigrp | rtmp}Syntax Description
Default
RTMP
Command Mode
Interface configuration
Usage Guidelines
You can configure an interface to use both RTMP and Enhanced IGRP. If you do so, route information learned from Enhanced IGRP will take precedence over information learned from RTMP. The access server will, however, continue to send out RTMP routing updates.
Enabling AURP automatically disables RTMP.
You can enable AURP only on tunnel interfaces.
Examples
The following example enables AppleTalk Enhanced IGRP on serial interface 0:
interface serial 0appletalk protocol eigrpThe following example disables RTMP on serial interface 0:
interface serial 0no appletalk protocol rtmpThe following example enables AURP on tunnel interface 1:
interface tunnel 1appletalk protocol aurpRelated Command
appletalk proxy-nbp
To assign a proxy network number for each zone in which there is a router that supports only nonextended AppleTalk, use the appletalk proxy-nbp global configuration command. To delete the proxy, use the no form of this command.
appletalk proxy-nbp network-number zone-name
no appletalk proxy-nbp [network-number zone-name]Syntax Description
Default
No proxy network number is assigned.
Command Mode
Global configuration
Usage Guidelines
The appletalk proxy-nbp command provides compatibility between AppleTalk Phase 1 and AppleTalk Phase 2 networks.
Proxy routes are included in outgoing RTMP updates as if they were directly connected routes, although they are not really directly connected, since they are not associated with any interface. Whenever an NBQ BrRq for the zone in question is generated by anyone anywhere in the Internet, an NBP FwdReq is directed to any router connected to the proxy route. The Phase 2 router which is the only router directly connected converts the FwdReq to LkUps, which are understood by Phase 1 routers, and sends them to every network in the zone.
In an environment in which there are Phase 1 and Phase 2 networks, you must specify at least one appletalk proxy-nbp command for each zone that has a nonextended-only AppleTalk access server.
The proxy network number you assign with the appletalk proxy-nbp command cannot also be assigned to an access server, nor can it also be associated with a physical network.
You need to assign only one proxy network number for each zone. However, you can define additional proxies with different network numbers to provide redundancy. Each proxy generates one or more packets for each forward request it receives. All other packets sent to the proxy network address are discarded. Defining redundant proxy network numbers increases the NBP traffic linearly.
Example
The following example defines network number 60 as an NBP proxy for the zone Twilight:
appletalk proxy-nbp 60 TwilightRelated Command
show appletalk routeappletalk require-route-zones
To prevent the advertisement of routes (network numbers or cable ranges) that have no assigned zone, use the appletalk require-route-zones global configuration command. To disable this option and allow the access server to advertise to its neighbors routes that have no network-zone association, use the no form of this command.
appletalk require-route-zones
no appletalk require-route-zonesSyntax Description
This command has no arguments or keywords.
Default
Enabled
Command Mode
Global configuration
Usage Guidelines
The appletalk require-route-zones command ensures that all networks have zone names prior to advertisement to neighbors.
The no appletalk require-route-zones command enables router behavior compatible with software Release 8.3.
Using this command helps prevent ZIP protocol storms. ZIP protocol storms can arise when corrupt routes are propagated and routers broadcast ZIP requests to determine the network/zone associations.
When the appletalk require-route-zones command is enabled, the access server will not advertise a route to its neighboring routers until it has obtained the network/zone associations. This effectively limits the storms to a single network rather than the entire internet.
As an alternative to disabling this option, use the appletalk getzonelist-filter interface configuration command to filter empty zones from the list presented to users.
You can configure different zone lists on different interfaces. However, you are discouraged from doing this because AppleTalk users expect to have the same user zone lists at any end node in the internet.
The filtering provided by the appletalk require-route-zones command does not prevent explicit access via programmatic methods, but should be considered a user optimization to suppress unused zones. You should use other forms of AppleTalk access control lists to actually secure a zone or network.
Example
The following example configures an access server to prevent the advertisement of routes that have no assigned zone:
appletalk require-route-zonesappletalk route-cache
To enable fast switching on all supported interfaces, use the appletalk route-cache interface configuration command. To disable fast switching, use the no form of this command.
appletalk route-cache
no appletalk route-cacheSyntax Description
This command has no arguments or keywords.
Default
Enabled on all interfaces that support fast switching
Command Mode
Interface configuration
Usage Guidelines
Fast switching allows higher throughput by switching a packet using a cache created by previous packets. Fast switching is enabled by default on all interfaces that support fast switching, including Token Ring, Frame Relay, and PPP. Note that fast switching is not supported over X.25 and LAPB encapsulations, or on the CSC-R16, CSC-1R, or CSC-2R STR Token Ring adapters.
Packet transfer performance is generally better when fast switching is enabled. However, you may want to disable fast switching in order to save memory space on interface cards and to help avoid congestion when high-bandwidth interfaces are writing large amounts of information to low-bandwidth interfaces.
For serial lines, fast switching is supported on extended serial lines with HDLC encapsulation only. It is not supported on nonextended serial lines.
Example
The following example disables fast switching on an interface:
interface ethernet 0appletalk cable-range 10-20appletalk zone Twilightno appletalk route-cacheRelated Command
appletalk route-redistribution
To redistribute RTMP routes into AppleTalk Enhanced IGRP and vice versa, use the appletalk route-redistribution global configuration command. To keep Enhanced IGRP and RTMP routes separate, use the no form of this command.
appletalk route-redistribution
no appletalk route-redistributionSyntax Description
This command has no arguments or keywords.
Default
Enabled when Enhanced IGRP is enabled.
Command Mode
Global configuration
Usage Guidelines
Redistribution allows routing information generated by one protocol to be advertised in another.
In the automatic redistribution of routes between Enhanced IGRP and RTMP, an RTMP hop is treated as having a slightly worse metric than an equivalent Enhanced IGRP hop on a 9.6-kilobit link. This allows Enhanced IGRP to be preferred over RTMP except in the most extreme of circumstances. Typically, you will see this only when using tunnels. If you want an Enhanced IGRP path in a tunnel to be preferred over an alternate RTMP path, you should set the interface delay and bandwidth parameters on the tunnel to bring the metric of the tunnel down to being better than a 9.6-kilobit link.
Example
In the following example, RTMP routing information is not redistributed:
appletalk routing eigrp 23no appletalk route-redistributionappletalk routing
To enable AppleTalk routing, use the appletalk routing global configuration command. To disable AppleTalk routing, use the no form of this command.
appletalk routing [eigrp router-number]
no appletalk routing [eigrp router-number]Syntax Description
Default
AppleTalk routing is disabled.
Command Mode
Global configuration
Usage Guidelines
If you do not specify the optional keyword and argument, this command enables AppleTalk routing using the RTMP routing protocol.
You can configure multiple AppleTalk Enhanced IGRP processes on an access server. To do so, assign each a different router ID number. (Note that IP and IPX Enhanced IGRP use an autonomous system number to enable Enhanced IGRP, while AppleTalk Enhanced IGRP uses a router ID.)
If you configure an access server with a router number that is the same as that of a neighboring router, the access server will refuse to start AppleTalk Enhanced IGRP on interfaces that connect with that neighboring router.
Examples
The following example enables AppleTalk protocol processing on the access server:
appletalk routingThe following example enables AppleTalk Enhanced IGRP routing on access server number 22:
appletalk routing eigrp 22Related Commands
appletalk address
appletalk cable-range
appletalk protocol
appletalk zoneappletalk send-rtmps
To allow an access server to send routing updates to its neighbors, use the appletalk send-rtmps interface configuration command. To block updates from being sent, use the no form of this command.
appletalk send-rtmps
no appletalk send-rtmpsSyntax Description
This command has no arguments or keywords.
Default
Routing updates are sent.
Command Mode
Interface configuration
Usage Guidelines
Use this command to ensure that a new internal network, created with the arap network command, is advertised.
If you block the sending of routing updates, an interface on the network that has AppleTalk enabled is not "visible" to other routers on the network.
Example
The following example prevents an access server from sending routing updates to its neighbors:
no appletalk send-rtmpsRelated Commands
appletalk require-route-zones
appletalk strict-rtmp-checking
appletalk timersappletalk static cable-range
To define a static route on an extended network, use the appletalk static cable-range global configuration command. To remove a static route, use the no form of this command.
appletalk static cable-range cable-range to network.node zone zone-name
no appletalk static cable-range cable-range to network.node [zone zone-name]Syntax Description
Default
No static routes are defined.
Command Mode
Global configuration
Usage Guidelines
You cannot delete a particular zone from the zone list without first deleting the static route.
Example
The following example creates a static route to the remote router whose address is 1.2 on the remote network 100-110 that is in the remote zone Remote:
appletalk static cable 100-110 to 1.2 zone RemoteRelated Commands
appletalk static network
show appletalk route
show appletalk staticappletalk static network
To define a static route on a nonextended network, use the appletalk static network global configuration command. To remove a static route, use the no form of this command.
appletalk static network network-number to network.node zone zone-name
no appletalk static network network-number to network.node [zone zone-name]Syntax Description
Default
No static routes are defined.
Command Mode
Global configuration
Usage Guidelines
You cannot delete a particular zone from the zone list without first deleting the static route.
Example
The following example creates a static route to the remote router whose address is 1.2 on the remote network 200 that is in the remote zone Remote:
appletalk static network 200 to 1.2 zone RemoteRelated Commands
appletalk static cable-range
show appletalk route
show appletalk staticappletalk strict-rtmp-checking
To perform maximum checking of routing updates to ensure their validity, use the appletalk strict-rtmp-checking global configuration command. To disable the maximum checking, use the no form of this command.
appletalk strict-rtmp-checking
no appletalk strict-rtmp-checkingSyntax Description
This command has no arguments or keywords.
Default
Maximum checking is performed.
Command Mode
Global configuration
Usage Guidelines
Strict RTMP checking discards any RTMP packets arriving from access servers that are not directly connected to the local router. This means that the local access server does not accept any routed RTMP packets. Note that RTMP packets that need to be forwarded by the access server are not discarded.
Example
The following example disables strict checking of RTMP routing updates:
no appletalk strict-rtmp-checkingRelated Commands
appletalk require-route-zones
appletalk send-rtmps
appletalk timersappletalk timers
To change the routing update timers, use the appletalk timers global configuration command. To return to the default routing update timers, use the no form of this command.
appletalk timers update-interval valid-interval invalid-interval
no appletalk timers [update-interval valid-interval invalid-interval]Syntax Description
Default
update-interval: 10 seconds
valid-interval: 20 seconds
invalid-interval: 60 secondsCommand Mode
Global configuration
Usage Guidelines
Routes older than the time specified by update-interval are considered suspect. Once the period of time specified by valid-interval has elapsed without having heard a routing update for a route, the route becomes bad and is eligible for replacement by a path with a higher (less favorable) metric. During the invalid-interval period, routing updates include this route with a special "notify neighbor" metric. If this timer expires, the route is deleted from the routing table.
Note that you should not attempt to modify the routing timers without fully understanding the ramifications of doing so. Many other AppleTalk router vendors provide no facility for modifying their routing timers; should you adjust our access server's AppleTalk timers such that routing updates do not arrive at these other routers within the normal interval, it is possible to degrade or destroy AppleTalk network connectivity.
If you change the routing update interval, be sure to do so for all routers on the network.
In rare instances, you might want to change this interval, such as when a router is busy and cannot send routing updates every 10 seconds or when slower routers are incapable of processing received routing updates in a large network.
Example
The following example increases the update interval to 20 seconds and the valid interval to 40 seconds:
appletalk timers 20 40 60appletalk virtual-net
To add AppleTalk users logging in on an asynchronous line and using PPP encapsulation to an internal network, use the appletalk virtual-net global configuration command. Use the no form of the command to remove an internal network.
appletalk virtual-net network-number zone-name
no appletalk virtual-net network-number zone-nameSyntax Description
Default
No virtual networks are predefined.
Command Mode
Global configuration
Usage Guidelines
A virtual network is a logical network that exists only within the access server. It enables you—and by extension anyone who dials into the server on this interface—to add an asynchronous interface to either a new or existing AppleTalk zone.
If you issue this command and use a new AppleTalk zone name, this network number will be the only one associated with this zone. If you issue this command and use an existing AppleTalk zone, this network number will be added to the existing zone.
The selected AppleTalk zone (either new or existing) is highlighted when you open the Macintosh Chooser window. From here, you can access any other available zones.
Example
The following example adds a user to the virtual network with the network number 3 and the name renegade:
appletalk virtual-net 3 renegadeRelated Commands
appletalk client-mode
appletalk address
appletalk cable-range
appletalk zone
show appletalk zone
appletalk zip-query-interval
To specify the interval at which the access server sends ZIP queries, use the appletalk zip-query-interval global configuration command. To return to the default interval, use the no form of this command.
appletalk zip-query-interval interval
no zip-query-interval [interval]Syntax Description
interval
Interval, in seconds, at which the access server sends ZIP queries. It can be any positive integer. The default is 10 seconds.
Default
10 seconds
Command Mode
Global configuration
Usage Guidelines
The access server uses the information received in response to its ZIP queries to update its zone table.
Example
The following example changes the ZIP query interval to 40 seconds:
appletalk zip-query-interval 40appletalk zip-reply-filter
To configure a ZIP reply filter, use the appletalk zip-reply-filter interface configuration command. To remove a filter, use the no form of this command.
appletalk zip-reply-filter access-list-number
no appletalk zip-reply-filter [access-list-number]Syntax Description
Default
No access lists are predefined.
Command Mode
Interface configuration
Usage Guidelines
ZIP reply filters limit the visibility of zones from routers in unprivileged regions throughout the internetwork. These filters filter the zone list for each network provided by an access server to neighboring access servers to remove restricted zones.
ZIP reply filters apply to downstream access servers, not to end stations on networks attached to the local access server. With ZIP reply filters, when downstream routers request the names of zones in a network, the local router replies with the names of visible zones only. It does not reply with the names of zones that have been hidden with a ZIP reply filter. To filter zones from end stations, use GZL filters.
Example
The following example assigns a ZIP reply filter to Ethernet interface 0:
interface ethernet 0appletalk zip-reply-filter 600Related Commands
access-list additional-zones
access-list zone
show appletalk interfaceappletalk zone
To set the zone name for the connected AppleTalk network, use the appletalk zone interface configuration command. To delete a zone, use the no form of this command.
appletalk zone zone-name
no appletalk zone [zone-name]Syntax Description
Default
No zone name is set.
Command Mode
Interface configuration
Usage Guidelines
If discovery mode is not enabled, you can specify this command only after an appletalk address or appletalk cable-range command. You can issue it multiple times if it follows the appletalk cable-range command.
On interfaces that have discovery mode disabled, you must assign a zone name in order for AppleTalk routing to begin.
If an interface is using extended AppleTalk, the first zone specified in the list is the default zone. The access server always uses the default zone when registering NBP names for interfaces. Nodes in the network will select the zone in which they will operate from the list of zone names valid on the cable to which they are connected.
If an interface is using nonextended AppleTalk, repeated execution of the appletalk zone command will replace the interface's zone name with the newly specified zone name.
The no form of the command deletes a zone name from a zone list or deletes the entire zone list if you do not specify a zone name. For nonextended AppleTalk interfaces, the zone name argument is ignored. You should delete any existing zone-name list using the no appletalk zone interface subcommand before configuring a new zone list.
The zone list is cleared automatically when you issue an appletalk address or appletalk cable-range command. The list also is cleared if you issue the appletalk zone command on an existing network; this can occur when adding zones to a set of routers until all access servers are in agreement.
Examples
The following example assigns the zone name Twilight to an interface:
interface Ethernet 0appletalk cable-range 10-20appletalk zone TwilightThe following example uses AppleTalk special characters to set the zone name to Cisco·Zone.
appletalk zone Cisco:A5ZoneRelated Commands
appletalk address
appletalk cable-range
show appletalk zoneclear appletalk arp
To delete all entries or a specified entry from the AARP table, use the clear appletalk arp EXEC command.
clear appletalk arp [network.node]
Syntax Description
Command Mode
EXEC
Sample Display
The following example deletes all entries from the access server's AARP table:
clear appletalk arpRelated Command
clear appletalk neighbor
To delete all entries or a specified entry from the neighbor table, use the clear appletalk neighbor EXEC command.
clear appletalk neighbor [neighbor-address]
Syntax Description
Command Mode
EXEC
Usage Guidelines
You cannot clear the entry for an active neighbor, that is, for a neighbor that still has RTMP connectivity.
Sample Display
The following example deletes the neighboring router 1.129 from the neighbor table:
clear appletalk neighbor 1.129Related Command
clear appletalk route
To delete entries from the routing table, use the clear appletalk route EXEC command.
clear appletalk route [network]
Syntax Description
Command Mode
EXEC
Sample Display
The following example deletes the route to network 1:
clear appletalk route 1Related Command
clear appletalk traffic
To reset AppleTalk traffic counters, use the clear appletalk traffic EXEC command.
clear appletalk traffic
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Sample Display
The following is sample output after a clear appletalk traffic command was executed.
Router# clear appletalk trafficRouter# show appletalk trafficAppleTalk statistics:Rcvd: 0 total, 0 checksum errors, 0 bad hop count0 local destination, 0 access denied0 for MacIP, 0 bad MacIP, 0 no client0 port disabled, 0 no listener0 ignored, 0 martiansBcast: 0 received, 0 sentSent: 0 generated, 0 forwarded, 0 fast forwarded, 0 loopback0 forwarded from MacIP, 0 MacIP failures0 encapsulation failed, 0 no route, 0 no sourceDDP: 0 long, 0 short, 0 macip, 0 bad sizeNBP: 0 received, 0 invalid, 0 proxies0 replies sent, 0 forwards, 0 lookups, 0 failuresRTMP: 0 received, 0 requests, 0 invalid, 0 ignored0 sent, 0 repliesEIGRP: 0 received, 0 hellos, 0 updates, 0 replies, 0 queries0 sent, 0 hellos, 0 updates, 0 replies, 0 queries0 invalid, 0 ignoredATP: 0 receivedZIP: 0 received, 0 sent, 0 netinfoEcho: 0 received, 0 discarded, 0 illegal0 generated, 0 replies sentResponder: 0 received, 0 illegal, 0 unknownAppleTalk statistics:0 replies sent, 0 failuresAARP: 0 requests, 0 replies, 0 probes0 martians, 0 bad encapsulation, 0 unknown0 sent, 0 failures, 0 delays, 0 dropsLost: 0 no buffersUnknown: 0 packetsDiscarded: 0 wrong encapsulation, 0 bad SNAP discriminator
Note
Related Commands
show appletalk macip-traffic
show appletalk trafficping (user)
To check host reachability and network connectivity, use the ping user EXEC command.
ping appletalk network.node
Syntax Description
Command Mode
EXEC
Usage Guidelines
The user ping (packet internet groper function) command provides a basic ping facility for users who do not have system privileges. This command is equivalent to the nonverbose form of the privileged ping command. It sends five 100-byte ping packets. The ping command sends Apple Echo Protocol (AEP) datagrams to other AppleTalk nodes to verify connectivity and measure round-trip times.
Only an interface that supports HearSelf can respond to packets generated at a local console and directed to an interface on the same router. Our routers and access servers support only HearSelf on Ethernet.
If the system cannot map an address for a host name, it will return an "%Unrecognized host or address" error message.
To abort a ping session, type the escape sequence. By default, this is Ctrl-^ X. You enter this by simultaneously pressing the Ctrl, Shift, and 6 keys, letting go, and then pressing the X key.
describes the test characters displayed in ping responses.
Table 17-2 AppleTalk Ping Characters
Sample Display
The following display shows input to and output from the user ping command.
Router> ping appletalk 1024.128Type escape sequence to abort.Sending 5, 100-byte AppleTalk Echoes to 1024.128, timeout is 2 seconds:!!!!!Success rate is 100 percent, round-trip min/avg/max = 4/4/8 msRelated Command
ping (privileged)
To check host reachability and network connectivity, use the ping privileged EXEC command.
ping [appletalk] [network.node]
Syntax Description
appletalk
(Optional) Specifies the AppleTalk protocol.
network.node
(Optional) AppleTalk address of the system to ping.
Command Mode
Privileged EXEC
Usage Guidelines
The privileged ping (packet internet groper function) command provides a complete ping facility for users who have system privileges. The ping command sends Apple Echo Protocol (AEP) datagrams to other AppleTalk nodes to verify connectivity and measure round-trip times.
Only an interface that supports HearSelf can respond to packets generated at a local console and directed to an interface on the same router. Our routers and access servers only support HearSelf on Ethernet.
If the system cannot map an address for a host name, it will return an "%Unrecognized host or address" error message.
To abort a ping session, type the escape sequence. By default, this is Ctrl-^ X. You enter this by simultaneously pressing the Ctrl, Shift, and 6 keys, letting go, and then pressing the X key.
describes the test characters displayed in ping responses.
Table 17-3 AppleTalk Ping Characters
Sample Display of a Standard Ping
The following display shows a sample standard appletalk ping session:
Router# pingProtocol [ip]: appletalkTarget Appletalk address: 1024.128Repeat count [5]:Datagram size [100]:Timeout in seconds [2]:Verbose [n]:Sweep range of sizes [n]:Type escape sequence to abort.Sending 5, 100-byte AppleTalk Echos to 1024.128, timeout is 2 seconds:!!!!!Success rate is 100 percent, round-trip min/avg/max = 4/4/8 msSample Display Using Ping in Verbose Mode
When you answer y in response to the prompt Verbose [n], ping runs in verbose mode. The following display shows a sample appletalk ping session when verbose mode is enabled:
Router# pingProtocol [ip]: appletalkTarget AppleTalk address: 4.129Repeat count [5]:Datagram size [100]:Timeout in seconds [2]:Verbose [n]: ySweep range of sizes [n]:Type escape sequence to abort.Sending 5, 100-byte AppleTalk Echos to 4.129, timeout is 2 seconds:0 in 4 ms from 4.129 via 1 hop1 in 8 ms from 4.129 via 1 hop2 in 4 ms from 4.129 via 1 hop3 in 8 ms from 4.129 via 1 hop4 in 8 ms from 4.129 via 1 hopSuccess rate is 100 percent, round-trip min/avg/max = 4/6/8 msdescribes the fields in the verbose mode portion of the display.
Table 17-4 AppleTalk Ping Fields
Sample Display of NBP Ping and the Nbptest Facility
The AppleTalk ping command allows testing and informational lookup of NBP-registered entities. Use the NBP option when you find that AppleTalk zones are listed in the Chooser, but services in these zones are unavailable. When you enter nbp in response to the Target AppleTalk address prompt, ping starts the nbptest facility, which is an interactive, menu-driven facility. Type help or ? to see the command list. Type quit to return to the EXEC prompt.
The following display shows how to initialize the AppleTalk nbptest utility:
Router# pingProtocol [ip]: appletalkTarget AppleTalk address: nbpnbptest>Type help to display the following list of available commands:
nbptest> helpTests are:lookup: lookup an NVE. prompt for name, type and zoneparms: display/change lookup parms (ntimes, ncecs, interval)zones: display zonespoll: for every zone, lookup all devices, using defaulthelp|?: print command listquit: exit nbptestThe following paragraphs summarize the nbptest tests that you can perform:
•
•
•
•
•
•
The remainder of this section shows and explains the output of the various nbptest commands.
When running any of the nbptest tests, you specify a nonprinting character by entering a three-character string that is the hexadecimal equivalent of the character. For example, type :c5 to specify the NBP truncation wildcard.
The following display shows sample output of the nbptest lookup command:
nbptest> lookupEntity name [=]:Type of Service [ipgateway]: macintosh:c5Zone [bldg-17]: engineering(100n,50a,253s)[1]: `userA:Macintosh IIcx@engineering'(100n,16a,251s)[1]: `userB:Macintosh II@engineering'(200n,24a,253s)[1]: `userC:Macintosh IIci@engineering'(200n,36a,251s)[1]: `userD:Macintosh II@engineering'(300n,21a,252s)[1]: `userE:Macintosh SE/30@engineering'NBP lookup request timed outProcessed 6 replies, 7 eventsdescribes the fields shown in the display.
Table 17-5 AppleTalk Ping Nbptest Lookup Field Descriptions
The following display shows sample output of the nbptest parms command:
nbptest> parmsmaxrequests [5]:1maxreplies [1]:100interval [5]:10describes the fields shown in the display.
Table 17-6 AppleTalk Ping Nbptest Parms Field Descriptions
The following display shows sample output from the nbptest zones command:
nbptest> zonesName Network(s)UDP 17 11Heavenly 1161 6Hostipal 55Bldg-17 82 81 14 13CSL EtherTalk 22Twilight 1554 254 36 33 4EtherTalk 22LocalTalk 80Total of 9 zonesdescribes the fields shown in the display.
Table 17-7 AppleTalk Ping Nbptest Zones Field Descriptions
Name
Zone name.
Network(s)
Number or numbers of the AppleTalk networks assigned to the zone.
The following display shows sample output from the nbptest poll command:
nbptest> pollpoll: sent 2 lookups(100n,82a,252s)[1]: `userA:Macintosh IIci@Zone one'(200n,75a,254s)[1]: `userB:Macintosh IIcx@Zone two'NBP polling completed.Processed 2 replies, 2 eventsdescribes the fields shown in the display.
Table 17-8 AppleTalk Ping Nbptest Poll Field Descriptions
Related Commands
ping (user)
show appletalk zoneshow appletalk access-lists
To display the AppleTalk access lists currently defined, use the show appletalk access-lists user EXEC command.
show appletalk access-lists
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Sample Display
The following is sample output from the show appletalk access-lists command:
Router> show appletalk access-listsAppleTalk access list 601:permit zone ZoneApermit zone ZoneBdeny additional-zonespermit network 55permit network 500permit cable-range 900-950deny includes 970-990permit within 991-995deny other-accessdescribes the fields shown in the display.
Table 17-9 Show AppleTalk Access-Lists Field Descriptions
Related Commands
access-list additional-zones
access-list cable-range
access-list includes
access-list network
access-list other-access
access-list within
access-list zone
appletalk access-group
appletalk distribute-list in
appletalk distribute-list out
appletalk getzonelist-filtershow appletalk adjacent-routes
To display routes to networks that are directly connected or that are one hop away, use the show appletalk adjacent-routes privileged EXEC command.
show appletalk adjacent-routes
Syntax Description
This command has no arguments or keywords.
Command Mode
Privileged EXEC
Usage Guidelines
The show appletalk adjacent-routes command provides a quick overview of the local environment that is especially useful when an AppleTalk internet consists of a large number of networks (typically, more then 600 networks).
You can use information provided by this command to determine if any local routes are missing or are misconfigured.
Sample Display
The following is sample output from the show appletalk adjacent-routes command:
Router# show appletalk adjacent-routesCodes: R - RTMP derived, E - EIGRP derived, C - connected, S - static, P - proxy, 67 routes in internetR Net 29-29 [1/G] via gatekeeper, 0 sec, Ethernet0, zone EngineeringC Net 2501-2501 directly connected, Ethernet1, no zone setC Net 4160-4160 directly connected, Ethernet0, zone Low End SW LabC Net 4172-4172 directly connected, TokenRing0, zone Low End SW LabR Net 6160 [1/G] via urk, 0 sec, TokenRing0, zone Low End SW Labdescribes the fields shown in the display.
Table 17-10 Show AppleTalk Adjacent-Routes Field Descriptions
show appletalk arp
To display the entries in the AARP cache, use the show appletalk arp privileged EXEC command.
show appletalk arp
Syntax Description
This command has no arguments or keywords.
Usage Guidelines
ARP establishes associates between network addresses and hardware (MAC) addresses. This information is maintained in the access server's ARP cache.
Sample Display
The following is sample output from the show appletalk arp command:
Router# show appletalk arpAddress Age (min) Type Hardware Addr Encap Interface2000.1 - Hardware 0000.0c04.1111 SNAP Ethernet12000.2 0 Dynamic 0000.0c04.2222 SNAP Ethernet12000.3 0 Dynamic 0000.0c04.3333 SNAP Ethernet32000.4 - Hardware 0000.0c04.4444 SNAP Ethernet3describes the fields shown in the display.
Table 17-11 Show AppleTalk ARP Field Descriptions
show appletalk aurp events
To display the pending events in the AURP update-events queue, use the show appletalk aurp events privileged EXEC command.
show appletalk aurp events
Syntax Description
This command has no arguments or keywords.
Command Mode
Privileged EXEC
Sample Display
The following is sample output from the show appletalk aurp events command:
Router> show appletalk aurp events100-100, NDC EVENT pending17043-17043, ND EVENT pendingexplains the fields shown in the display.
Table 17-12 Show AppleTalk AURP Events Fields
100-100
Network number or cable range.
NCD EVENT pending
Type of update event that is pending.
show appletalk aurp topology
To display entries in the AURP private path database, which consists of all paths learned from exterior routers, use the show appletalk aurp topology privileged EXEC command.
show appletalk aurp topology
Syntax Description
This command has no arguments or keywords.
Command Mode
Privileged EXEC
Sample Display
The following is sample output from the show appletalk aurp topology command:
Router# show appletalk aurp topology30via Tunnel0, 3 hops80via Tunnel0, 3 hops101-101via Tunnel0, 8 hops102-102via Tunnel0, 8 hops103-103via Tunnel0, 8 hops104-104via Tunnel0, 8 hops105-105via Tunnel0, 8 hops108-108via Tunnel0, 8 hops109-109via Tunnel0, 9 hops120-120via Tunnel0, 10 hops125-125via Tunnel0, 8 hops169-169via Tunnel0, 7 hops201-205via Tunnel0, 4 hopsexplains the fields shown in the display.
Table 17-13 Show AppleTalk AURP Topology Fields
30
AppleTalk network number or cable range.
via Tunnel0
Interface used to reach the network.
3 hops
Number of hops to the network.
show appletalk cache
To display the routes in the AppleTalk fast-switching table on an extended AppleTalk network, use the show appletalk cache EXEC command.
show appletalk cache
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Usage Guidelines
The show appletalk cache command displays information for all fast-switching route cache entries, whether or not they are valid.
Route entries are removed from the fast-switching cache if one of the following occurs:
•
•
•
•
•
•
•
•
•
•
•
Sample Display
The following is sample output from the show appletalk cache command:
Router> show appletalk cacheAppleTalk Routing Cache, * = active entry, cache version is 227Destination Interface MAC Header* 29.0 Ethernet0 00000C00008200000C00D8DD* 1544.000 Ethernet1 AA000400013400000C000E8C809B84BE02* 33.000 Ethernet1 AA000400013400000C000E8C809B84BE02describes the fields shown in the display.
Table 17-14 Show AppleTalk Cache Field Descriptions
Related Command
show appletalk domain
To display all domain-related information, use the show appletalk domain EXEC command.
show appletalk domain [domain-number]
Syntax Description
domain-number
(Optional) Number of an AppleTalk domain about which to display information. It can be a decimal integer from 1 through 1000000.
Command Mode
EXEC
Usage Guidelines
If you omit the argument domain-number, the show appletalk domain command displays information about all domains.
Sample Displays
The following is sample output from the show appletalk domain command:
Router# show appletalk domainAppleTalk Domain Information:Domain 1 Name : AIP Domain 1---------------------------------------Status : ActiveInbound remap range : 100-199Outbound remap range : 200-299Hop reduction : OFFInterfaces in domain :Ethernet1 : EnabledDomain 2 Name : AIP Domain 2---------------------------------------Status : ActiveInbound remap range : 300-399Outbound remap range : 400-499Hop reduction : OFFInterfaces in domain :Ethernet3 : EnabledThe following is sample output from the show appletalk domain command when you specify a domain number:
Router# show appletalk domain 1AppleTalk Domain Information:Domain 1 Name : AIP Domain 1---------------------------------------Status : ActiveInbound remap range : 100-199Outbound remap range : 200-299Hop reduction : OFFInterfaces in domain :Ethernet1 : Enabledexplains the fields shown in the displays.
Table 17-15 Show AppleTalk Domain Field Descriptions
Related Commands
appletalk domain-group
appletalk domain hop-reduction
appletalk domain name
appletalk domain remap-rangeshow appletalk eigrp neighbors
To display the neighbors discovered by Enhanced IGRP, use the show appletalk eigrp neighbors EXEC command.
show appletalk eigrp neighbors [interface]
Syntax Description
Command Mode
EXEC
Usage Guidelines
The show appletalk eigrp neighbors command lists only the neighbors running AppleTalk Enhanced IGRP. To list all neighboring AppleTalk routers, use the show appletalk neighbors command.
Sample Display
The following is sample output from the show appletalk eigrp neighbors command:
Router# show appletalk eigrp neighborsAT/EIGRP Neighbors for process 1, router id 83Address Interface Holdtime Uptime Q Seq SRTT RTO(secs) (h:m:s) Count Num (ms) (ms)warp.Ethernet1 Ethernet2 41 0:02:48 0 282 4 20master.Ethernet2 Ethernet2 40 1:16:46 0 333 4 20explains the fields in the output.
Table 17-16 Show AppleTalk EIGRP Neighbors Field Descriptions
Related Commands
appletalk routing
show appletalk neighborsshow appletalk eigrp topology
To display the AppleTalk Enhanced IGRP topology table, use the show appletalk eigrp topology EXEC command.
show appletalk eigrp topology [network-number | active | zero-successors]
Syntax Description
Command Mode
EXEC
Usage Guidelines
All Enhanced IGRP routes that are received for a destination, regardless of metric, are placed in the topology table. The route to a destination that is currently in use is the first route listed. Routes that are listed as "connected" take precedence over any routes learned from any other source.
Sample Display
The following is sample output from the show appletalk eigrp topology command:
Router# show appletalk eigrp topologyIPX EIGRP Topology Table for process 1, router id 1Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,r - Reply statusP 3165-0, 1 successors, FD is 0via Redistributed (25601/0),via 100.1 (2198016/2195456), Fddi0via 4080.67 (2198016/53760), Serial4P 3161-0, 1 successors, FD is 307200via Redistributed (1025850/0),via 100.1 (2198016/2195456), Fddi0via 4080.67 (2198016/1028410), Serial4P 100-100, 1 successors, FD is 0via Connected, Fddi0via 4080.67 (2198016/28160), Serial4P 4080-4080, 1 successors, FD is 0via Connected, Serial4via 100.1 (2172416/2169856), Fddi0explains the fields that may be displayed in the output.
Table 17-17 Show AppleTalk EIGRP Topology Field Descriptions
The following is sample output from the show appletalk eigrp topology command when you specify an AppleTalk network number:
Router# show appletalk eigrp topology 3165AT-EIGRP topology entry for 3165-0State is Passive, Query origin flag is 1, 1 Successor(s)Routing Descriptor Blocks:0.0, from 0.0Composite metric is (25601/0), Send flag is 0x0, Route is InternalVector metric:Minimum bandwidth is 2560000000 KbitTotal delay is 1000000 nanosecondsReliability is 255/255Load is 1/255Minimum MTU is 1500Hop count is 0100.1 (Fddi0), from 100.1Composite metric is (2198016/2195456), Send flag is 0x0, Route is ExternalVector metric:Minimum bandwidth is 1544 KbitTotal delay is 21100000 nanosecondsReliability is 255/255Load is 1/255Minimum MTU is 1500Hop count is 24080.83 (Serial4), from 4080.83Composite metric is (2198016/53760), Send flag is 0x0, Route is InternalVector metric:Minimum bandwidth is 1544 KbitTotal delay is 21100000 nanosecondsReliability is 255/255Load is 1/255Minimum MTU is 1500Hop count is 2explains the fields that may be in the output.
Table 17-18 Show AppleTalk EIGRP Topology Field Descriptions for a Specified Network
Related Command
show appletalk globals
To display information and settings about the access server's AppleTalk internetwork and other parameters, use the show appletalk globals EXEC command.
show appletalk globals
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Sample Display
The following is sample output from the show appletalk globals command:
Router# show appletalk globalsAppleTalk global information:Internet is compatible with older, AT Phase1, routers.There are 67 routes in the internet.There are 25 zones defined.All significant events will be logged.ZIP resends queries every 10 seconds.RTMP updates are sent every 10 seconds.RTMP entries are considered BAD after 20 seconds.RTMP entries are discarded after 60 seconds.AARP probe retransmit count: 10, interval: 200.AARP request retransmit count: 5, interval: 1000.DDP datagrams will be checksummed.RTMP datagrams will be strictly checked.RTMP routes may not be propagated without zones.Alternate node address format will not be displayed.describes the fields shown in the display.
Table 17-19 Show AppleTalk Globals Field Descriptions
Related Commands
appletalk arp interval
appletalk arp retransmit-count
appletalk checksum
appletalk event-logging
appletalk lookup-type
appletalk name-lookup-interval
appletalk require-route-zones
appletalk strict-rtmp-checkingshow appletalk interface
To display the status of the AppleTalk interfaces configured in the access server and the parameters configured on each interface, use the show appletalk interface privileged EXEC command.
show appletalk interface [brief] [type number]
Syntax Description
Command Mode
Privileged EXEC
Usage Guidelines
The show appletalk interface is particularly useful when you first enable AppleTalk on an access server interface.
Sample Displays
The following is sample output from the show appletalk interface command for an extended AppleTalk network:
Router# show appletalk interface fddi 0Fddi0 is up, line protocol is upAppleTalk cable range is 4199-4199AppleTalk address is 4199.82, ValidAppleTalk zone is "Zone2"AppleTalk port configuration verified by 2.3AppleTalk discarded 30 packets due to input errorsAppleTalk address gleaning is disabledAppleTalk route cache is enabledAppleTalk domain is 1 (AIP Domain 1)Interface will perform pre-FDDITalk compatibilitydescribes the fields shown in the display as well as some fields not shown but that also may be displayed. Note that this command can show a node name in addition to the address, depending on how the access server has been configured with the appletalk lookup-type and appletalk name-lookup-interval commands.
Table 17-20 Show AppleTalk Interface Field Descriptions for an Extended Network
The following is sample output from the show appletalk interface command for a nonextended AppleTalk network:
Router# show appletalk interface e1Ethernet 1 is up, line protocol is upAppleTalk address is 666.128, ValidAppleTalk zone is UnderworldAppleTalk routing protocols enabled are RTMPAppleTalk address gleaning is enabledAppleTalk route cache is not initializeddescribes the fields shown in the display.
Table 17-21 Show AppleTalk Interface Field Descriptions for a Nonextended Network
The following is sample output from the show appletalk interface brief command:
Router# show appletalk interface briefInterface Address Config Status/Line Protocol Atalk ProtocolTokenRing0 108.36 Extended up downTokenRing1 unassigned not config'd administratively down n/aEthernet0 10.82 Extended up upSerial0 unassigned not config'd administratively down n/aEthernet1 30.83 Extended up upSerial1 unassigned not config'd administratively down n/aSerial2 unassigned not config'd administratively down n/aSerial3 unassigned not config'd administratively down n/aSerial4 unassigned not config'd administratively down n/aSerial5 unassigned not config'd administratively down n/aFddi0 50001.82 Extended administratively down downEthernet2 unassigned not config'd up n/aEthernet3 9993.137 Extended up upEthernet4 40.82 Non-Extended up upEthernet5 unassigned not config'd administratively down n/aEthernet6 unassigned not config'd administratively down n/aEthernet7 unassigned not config'd administratively down n/adescribes the fields shown in the display.
Table 17-22 Show AppleTalk Interface Brief Field Descriptions
Related Commands
appletalk discovery
appletalk lookup-type
appletalk name-lookup-intervalshow appletalk macip-clients
To display status information about all known MacIP clients, use the show appletalk macip-clients EXEC command.
show appletalk macip-clients
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Sample Display
The following is sample output from the show appletalk macip-clients command:
Router# show appletalk macip-clients172.16.199.1@[27001n,69a,72s] 45 secs 'S/W Test Lab'describes the fields shown in the display.
Table 17-23 Show AppleTalk MacIP Clients Field Descriptions
Related Command
show appletalk macip-servers
To display status information about an access server's servers, use the show appletalk macip-servers EXEC command.
show appletalk macip-servers
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Usage Guidelines
The information in the show appletalk macip-servers display can help you quickly determine the status of your MacIP configuration. In particular, the STATE field can help identify problems in your AppleTalk environment.
Sample Display
The following is sample output from the show appletalk macip-servers command:
Router# show appletalk macip-serversMACIP SERVER 1, IP 172.16.199.221, ZONE 'S/W Test Lab' STATE is server_upResource #1 DYNAMIC 172.16.199.1-172.16.199.10, 1/10 IP in useResource #2 STATIC 172.16.199.11-172.16.199.20, 0/10 IP in usedescribes the fields shown in the display.
Table 17-24 Show AppleTalk MacIP Servers Field Descriptions
Use the show appletalk macip-servers command with show appletalk interface to identify AppleTalk network problems, as follows.
Step 1
Step 2
Step 3
The STATE field of the show appletalk macip-servers command indicates the current state of each configured MacIP server. Each server operates according to the finite-state machine table described in . describes the state functions listed in . These are the states that are displayed by the show appletalk macip-servers command.
Table 17-25 MacIP Finite-State Machine Table
Table 17-26 Server States
Related Commands
appletalk macip dynamic
appletalk macip server
appletalk macip static
show appletalk interface
show appletalk trafficshow appletalk macip-traffic
To display statistics about MacIP traffic through the access server, use the show appletalk macip-traffic privileged EXEC command.
show appletalk macip-traffic
Syntax Description
This command has no arguments or keywords.
Command Mode
Privileged EXEC
Usage Guidelines
Use the show appletalk macip-traffic command to obtain a detailed breakdown of MacIP traffic that is sent through an access server from an AppleTalk to an IP network. The output from this command differs from that of the show appletalk traffic command, which shows normal AppleTalk traffic generated, received, or routed by the access server.
Sample Display
The following is sample output from the show appletalk macip-traffic command:
Router# show appletalk macip-traffic-- MACIP StatisticsMACIP_DDP_IN: 11062MACIP_DDP_IP_OUT: 10984MACIP_DDP_NO_CLIENT_SERVICE: 78MACIP_IP_IN: 7619MACIP_IP_DDP_OUT: 7619MACIP_SERVER_IN: 62MACIP_SERVER_OUT: 52MACIP_SERVER_BAD_ATP: 10MACIP_SERVER_ASSIGN_IN: 26MACIP_SERVER_ASSIGN_OUT: 26MACIP_SERVER_INFO_IN: 26MACIP_SERVER_INFO_OUT: 26describes the fields shown in the display.
Table 17-27 Show AppleTalk MacIP Traffic Field Descriptions
Related Command
show appletalk name-cache
To display a list of NBP services offered by nearby routers and other devices that support NBP, use the show appletalk name-cache privileged EXEC command.
show appletalk name-cache
Syntax Description
This command has no arguments or keywords.
Command Mode
Privileged EXEC
Usage Guidelines
The show appletalk name-cache command displays the information currently in the NBP name cache.
Support for names allows you to easily identify and determine the status of any associated device. This can be important in AppleTalk internetworks where node numbers are dynamically generated.
You can authorize the show appletalk name-cache command to display any AppleTalk services of interest in local zones. This contrasts with the show appletalk nbp command, which you use to display services registered by the access server.
Sample Display
The following is sample output from the show appletalk name-cache command:
Router# show appletalk name-cacheAppleTalk Name Cache:Net Adr Skt Name Type Zone4160 19 8 gatekeeper SNMP Agent Underworld4160 19 254 gatekeeper.Ether4 ciscoRouter Underworld4160 86 8 bones SNMP Agent Underworld4160 86 72 172.16.160.78 IPADDRESS Underworld4160 86 254 bones.Ethernet0 IPGATEWAY Underworlddescribes the fields shown in the display.
Table 17-28 Show AppleTalk Name-Cache Field Descriptions
Related Command
show appletalk nbp
To display the contents of the NBP name registration table, use the show appletalk nbp EXEC command.
show appletalk nbp
Syntax Description
This command has no arguments or keywords.
Command Mode
EXEC
Usage Guidelines
The show appletalk nbp command lets you identify specific AppleTalk nodes. It displays services registered by the access server. In contrast, use the show appletalk name-cache command to display any AppleTalk services of interest in local zones.
Routers with active AppleTalk interfaces register each interface separately. The access server generates a unique interface NBP name by appending the interface type name and unit number to the router name. For example, for the router named "router" that has AppleTalk enabled on Ethernet interface 0 in the zone Marketing, the NBP registered name is as follows:
router.Ethernet0:ciscoRouter@MarketingRegistering each interface on the access server provides you with an indication that the access server is configured and operating properly.
One name is registered for each interface. Other service types are registered once for each zone.
The access server deregisters the NBP name if AppleTalk is disabled on the interface for any reason.
Sample Display
The following is sample output from the show appletalk nbp command:
Router# show appletalk nbpNet Adr Skt Name Type Zone4160 211 254 pag.Ethernet0 ciscoRouter Low End SW Lab4160 211 8 pag SNMP Agent Low End SW Lab4172 84 254 pag.TokenRing0 ciscoRouter LES Tokenring4172 84 8 pag SNMP Agent LES Tokenring200 75 254 myrouter. Ethernet1 ciscoRouter Marketing *describes the fields shown in the display as well as some fields not shown but that also may be displayed.
Table 17-29 Show AppleTalk NBP Field Descriptions
Related Command
show appletalk neighbors
To display information about AppleTalk routers and access servers that are directly connected to any of the networks to which this access server is directly connected, use the show appletalk neighbors EXEC command.
show appletalk neighbors [neighbor-address]
Syntax Description
Command Mode
EXEC
Usage Guidelines
If no neighbor address is specified, this command displays information about all AppleTalk routers.
The local router determines the AppleTalk network topology from its neighboring routers and learns from them most of the other information it needs to support the AppleTalk protocols.
Sample Displays
The following is sample output from the show appletalk neighbors command:
Router# show appletalk neighborsAppleTalk neighbors:17037.2 anger.Ethernet0/0 Ethernet0/0, uptime 8:33:27, 2 secsNeighbor is reachable as a RTMP peer17037.108 Ethernet0/0, uptime 8:33:21, 7 secsNeighbor is reachable as a RTMP peer17037.248 Ethernet0/0, uptime 8:33:30, 4 secsNeighbor is reachable as a RTMP peer17046.2 anger.Ethernet0/1 Ethernet0/1, uptime 8:33:27, 2 secsNeighbor is reachable as a RTMP peer17435.87 firewall.Ethernet0/0 Ethernet0/3, uptime 8:33:27, 6 secsNeighbor is reachable as a RTMP peer17435.186 the-wall.Ethernet0 Ethernet0/3, uptime 8:33:24, 5 secsNeighbor is reachable as a RTMP peer17435.233 teach-gw.Ethernet0 Ethernet0/3, uptime 8:33:24, 7 secsNeighbor is reachable as a RTMP peer17036.1 other-gw.Ethernet5 Ethernet0/5, uptime 8:33:29, 9 secsNeighbor is reachable as a RTMP peer4021.5 boojum.Hssi4/0 Hssi1/0, uptime 10:49:02, 0 secsNeighbor has restarted 1 time in 8:33:11.Neighbor is reachable as a static peerdescribes the fields shown in this display. Depending on the configuration of the appletalk lookup-type and appletalk name-lookup-interval commands, a node name as well as a node address also may be shown in this display.
Table 17-30 Show AppleTalk Neighbors Field Descriptions
The following is sample output from the show appletalk neighbors command when you specify the AppleTalk address of a particular neighbor:
Router# show appletalk neighbors 69.163Neighbor 69.163, Ethernet0, uptime 268:00:52, last update 7 secs agoWe have sent queries for 299 nets via 214 packets.Last query was sent 4061 secs ago.We received 152 replies and 0 extended replies.We have received queries for 14304 nets in 4835 packets.We sent 157 replies and 28 extended replies.We received 0 ZIP notifies.We received 0 obsolete ZIP commands.We received 4 miscellaneous ZIP commands.We received 0 unrecognized ZIP commands.We have received 92943 routing updates.Of the 92943 valid updates, 1320 entries were invalid.We received 1 routing update which were very late.Last update had 0 extended and 2 nonextended routes.Last update detail: 2 olddescribes the fields shown in this display. Depending on the configuration of the appletalk lookup-type and appletalk name-lookup-interval commands, a node name as well as a node address can be shown in this display.
Table 17-31 Show AppleTalk Neighbors Field Descriptions for a Specific Address
Related Commands
appletalk lookup-type
appletalk name-lookup-intervalshow appletalk remap
To display domain remapping information, use the show appletalk remap EXEC command.
show appletalk remap [domain domain-number [{in | out} [{to | from}
domain-network]]]Syntax Description
Command Mode
EXEC
Usage Guidelines
If you omit all options keywords and arguments, the show appletalk remap command displays all remapping information about all domains.
Sample Displays
The following is sample output from the show appletalk remap command:
Router# show appletalk remapAppleTalk Remapping Table :------------------------------Domain 1 : AIP Domain 1 State : Active------------------------------------------Direction : INDomain Net(Cable) Remapped to Status3 - 3 100 - 100 GoodDirection : OUTDomain Net(Cable) Remapped to Status1 - 1 200 - 200 GoodDomain 2 : AIP Domain 2 State : Active------------------------------------------Direction : INDomain Net(Cable) Remapped to StatusDirection : OUTDomain Net(Cable) Remapped to Status2 - 2 400 - 400 Good100 - 100 401 - 401 GoodThe following is sample output from the show appletalk remap command when you specify a domain number:
Router# show appletalk remap 1AppleTalk Remapping Table :------------------------------Domain 1 : AIP Domain 1 State : Active------------------------------------------Direction : INDomain Net(Cable) Remapped to Status3 - 3 100 - 100 GoodDirection : OUTDomain Net(Cable) Remapped to Status1 - 1 201 - 201 GoodThe following is sample output from the show appletalk remap command to display inbound remappings for AppleTalk network 100:
Router# show appletalk remap 1 in from 100AppleTalk Remapping Table :------------------------------For the Remap 100 the Domain net is 3explains the fields shown in the display.
Table 17-32 Show AppleTalk Remap Field Descriptions
Related Command
show appletalk route
To display all entries or specified entries in the AppleTalk routing table, use the show appletalk route EXEC command.
show appletalk route [network | type number]
Syntax Description
network
(Optional) Displays the routing table entry for the specified network.
type number
(Optional) Displays the routing table entries for networks that can be reached via the specified interface.
Command Mode
EXEC
Usage Guidelines
If you omit the arguments, this command displays all entries in the routing table.
Sample Displays
The following is sample output from the show appletalk route command for a nonextended AppleTalk network:
Router# show appletalk routeCodes: R - RTMP derived, E - EIGRP derived, C - connected, P - proxy, S - static5 routes in internetC Net 258 directly connected, 1431 uses, Ethernet0, zone TwilightR Net 6 [1/G] via 258.179, 8 sec, 0 uses, Ethernet0, zone The OC Net 11 directly connected, 472 uses, Ethernet1, zone No ParkingR Net 2154 [1/G] via 258.179, 8 sec, 6892 uses, Ethernet0, zone LocalTalkS Net 1111 via 258.144, 0 uses, Ethernet0, no zone set[hops/state] state can be one of G:Good, S:Suspect, B:BadThe following is sample output from the show appletalk route command for an extended AppleTalk network:
Router# show appletalk routeCodes: R - RTMP derived, E - EIGRP derived, C - connected, P - proxy, S - static5 routes in internetC Net 254 directly connected, Ethernet1, zone TwilightR Net 890 [2/G] via 4.129, 1 sec, Ethernet0, zone release labR Net 901 [2/G] via 4.129, 1 sec, Ethernet0, zone Dave's HouseC Net 999-999 directly connected, Serial3, zone Magnolia EstatesR Net 2003 [4/G] via 80.129, 6 sec, Ethernet4, zone Bldg-13describes the fields shown in the two displays as well as some fields not shown but that also may be displayed. Depending on the configuration of the global configuration commands appletalk lookup-type and appletalk name-lookup-interval, a node name may appear in this display instead of a node address.
Table 17-33 Show AppleTalk Route Field Descriptions
The following is sample output from the show appletalk route command when you specify a network number:
Router# show appletalk route 69Codes: R - RTMP derived, E - EIGRP derived, C - connected, P - proxy, S - staticThe first zone listed for each entry is its default (primary) zone.R Net 69-69 [2/G] via gatekeeper, 0 sec, Ethernet0, zone Empty GufRoute installed 125:20:21, updated 0 secs agoNext hop: gatekeeper, 2 hops awayZone list provided by gatekeeperRoute has been updated since last RTMP was sentValid zones: "Empty Guf"describes the fields shown in the display.
Table 17-34 Show AppleTalk Route Field Descriptions for a Specified Network
Related Commands
appletalk lookup-type
appletalk name-lookup-interval
appletalk proxy-nbp
clear appletalk routeshow appletalk sockets
To display all information or specified information about process-level operation in the sockets of an AppleTalk interface, use the show appletalk sockets privileged EXEC command.
show appletalk sockets [socket-number]
Syntax Description
Command Mode
Privileged EXEC
Usage Guidelines
If no socket number is specified, this command displays information about all sockets.
Sample Display
The following is sample output from the show appletalk sockets command when you do not specify a socket number:
Router# show appletalk socketsSocket Name Owner Waiting/Processed1 RTMP AT RTMP 0 1487662 NIS AT NBP 0 156424 AEP AT Maintenance 0 06 ZIP AT ZIP 0 136198 SNMP AT SNMP 0 010 SMRP SMRP Input 0 56393253 PingServ AT Maintenance 0 0The following is sample output from the show appletalk socket command when you do specify a socket number:
Router# show appletalk sockets 66 ZIP AT ZIP 0 13619describes the fields shown in these displays.
Table 17-35 Show AppleTalk Socket Field Descriptions
show appletalk static
To display information the statically defined routes, use the show appletalk static EXEC command.
show appletalk static
Syntax Description
This command has no arguments or parameters.
Command Mode
EXEC
Sample Display
The following is sample output from the show appletalk static command:
Router# show appletalk staticList of Static Routes:(3 Static routes in internet)Net 100-110 [1/G] via 1000.2, 11456 sec, Serial0, zone TwilightNet 412-412 [1/G] via 1000.2, 11623 sec, Serial0, zone TwilightNet 514-515 [1/G] via 1000.2, 11061 sec, Serial0, zone Twilight
