------------------
RIP
------------------
-
Distribute-list + (Plus)
>
Standard ACL: Filtering with IP update.
>>
ACL: deny => Implemment
Filtering
>>
ACL: permit => Dont do
anything
>
Extended ACL: Filtering with source update + IP Update.
>>
Source update: IP Source in command ACL ( *** don't using Router-id in OSPF)
>>
IP Update : IP Destination in
command ACL
*
Note: Note ACL in Permit or Deny.
>
Gateway: Filtering all update by neighbor
*
Note: Filtering all update. Cannot implement 1 ACL for specefic a route permit
>
Prefix-list:
>>
Filtering as Standard ACL if dont not use GATEWAY.
>>
Prefix-list + Gateway : Filter a specific route with Gateway match Prefix-list
- Filter 1.1.1.0/24 trên R4.
Sử dụng
distribute-list + ACL standard
R4:
access-list 1
deny 1.1.1.0 0.0.0.255
access-list 1 permit
any
!
router rip
version 2
network 0.0.0.0
distribute-list 1 in
no auto-summary
R4#show ip route
Gateway of last
resort is not set
R 192.168.12.0/24 [120/1] via 10.1.14.1, 00:00:21, FastEthernet0/0
[120/1] via 10.1.1.2,
00:00:08, Serial0/0
1.0.0.0/24 is subnetted, 1 subnets
R 1.1.1.0 [120/1] via 10.1.14.1, 00:00:21, FastEthernet0/0
2.0.0.0/24 is subnetted, 1 subnets
R 2.2.2.0 [120/1] via 10.1.1.2, 00:00:08,
Serial0/0
3.0.0.0/24 is subnetted, 1 subnets
R 3.3.3.0 [120/1] via 10.1.1.3, 00:00:26,
Serial0/0
4.0.0.0/24 is subnetted, 1 subnets
C 4.4.4.0 is directly connected, Loopback0
10.0.0.0/24 is subnetted, 2 subnets
C 10.1.14.0 is directly connected,
FastEthernet0/0
C 10.1.1.0 is directly connected,
Serial0/0
R 192.168.23.0/24 [120/1] via 10.1.1.3,
00:00:26, Serial0/0
[120/1] via 10.1.1.2,
00:00:08, Serial0/0
R4:
ip prefix-list
GATE_WAY seq 5 deny 10.1.1.1/32
ip prefix-list
GATE_WAY seq 10 permit 0.0.0.0/0 le 32
!
ip prefix-list
PERMIT_ALL seq 5 permit 0.0.0.0/0 le 32
!
router rip
version 2
network 0.0.0.0
distribute-list prefix PERMIT_ALL gateway
GATE_WAY in
no auto-summary
No comments:
Post a Comment