[j-nsp] prefix-list
Richard A Steenbergen
ras at e-gerbil.net
Tue Apr 20 20:03:43 EDT 2004
On Tue, Apr 20, 2004 at 04:20:03PM -0700, Wayne E. Bouchard wrote:
> Okay,
>
> Pardon the (potentially) dumb question..
>
> When I'm writing a filter, whats the difference between using, say,
> address 1.2.3.0/24 and specifying a prefix-list that includes
> 1.2.3.0/24?
>
> I see that there are difference in treatment of prefix-list vs
> route-filter but can't determine if there are similar differences with
> respect to firewall filters.
With route-filter you can specify modifiers such as "orlonger", "upto",
etc, where in a prefix-list you can't. Since those modifiers only apply to
prefix matching (length modifiers) and not packet matching, there should
be no difference between a prefix-list reference in a firewall and a
straight address reference.
--
Richard A Steenbergen <ras at e-gerbil.net> http://www.e-gerbil.net/ras
GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC)
More information about the juniper-nsp
mailing list