[c-nsp] BGP/route-map/acl question/logic...
CiscoNSP List
cisconsp_list at hotmail.com
Tue Feb 3 03:40:34 EST 2015
> On Tue, Feb 03, 2015 at 08:39:09AM +0100, Lukas Tribus wrote:
> > > route-map UPSTREAM_A_IN permit 10
> > > match ip address 98
> >
> > I would strongly suggest to use prefix-lists instead of access-lists, they are
> > made on purpose to match prefixes, are a lot easier to use and provide
> > much more flexibility.
>
> I can see "easier to use", but more flexibility - actually, no :-)
>
> It's hard to come up with a really useful example, but given that extended
> ACLs match both on prefix base and netmask with wildcards bits, this is
> more flexibility than you'll ever use without your brain blowing up.
>
> access-list 100 permit 10.0.5.0 0.255.0.0 255.255.255.0 0.0.0.255
>
> "for every /24 out of 10/0 that is 10.x.5.0/24, permit /24../32"
>
> do that with a prefix list :-)
lol...after that acl example, I think my brain is about to explode....hehe, I can sense some regex examples coming :)
More information about the cisco-nsp
mailing list