[c-nsp] Access list question
Nsubuga Ronald
napstertash at gmail.com
Wed Oct 31 01:29:07 EDT 2007
Hullo,
On 10/31/07, Jefri Abdullah <jefri at grid.ui.edu> wrote:
>
> Dear List,
>
> I've two routers running ibgp as routing protocol, some how, one of
> these router should advertise network 0.0.0.0 (via default-information
> network statement) to another ebgp peer. But the ibgp peer should deny
> to receive this network.
>
> Trying this access-list but failed, because my router denying all
> route came from ibgp peer:
>
> Standard IP access list TEST
> 10 deny 0.0.0.0
> 20 permit any
>
> It's also impossible for me to permitting all prefix than at the end
> deny any, since the network advertised by ibgp is very large. Any
> other option to block prefix 0.0.0.0 but still receiving other prefix?
You can use prefix-lists which you can finally apply to the specified neighbor
you want to advertise specific prefixes.
format would be
ip prefix-list list-name deny/permit network/length
ip prefix-list no-more permit w.x.y.z/23
ip prefix-list no-more deny 0.0.0.0/0
This can be applied on both the advertised and received routes to your neighbor
by using neigh a.a.a.a prefix-list no-more in
--
> NULL
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
--
Ronnie Tash
---------
A: Because we read from top to bottom, left to right.
Q: Why should i start my reply below the quoted text?
- -- http://www.i-hate-computers.demon.co.uk/
----------------------------------------------
More information about the cisco-nsp
mailing list