[j-nsp] (no subject)

Thu Oct 13 03:08:21 EDT 2005

On Wed, Oct 12, 2005 at 03:42:06PM -1000, Randy Bush wrote:

Dear Randy,

> > I don't believe that you can do that with a prefix-list statement.
> > Tried doing it this way?
> > 
> > policy-statement foo {
> > 	from {
> > 		42.0.0.0/8 orlonger;
> > 	}
> > 	then {
> > 		reject;
> > 	}
> > }
> 
> does not scale.  i want to use the prefix-list in many policy
> terms.

Perhaps you could use the groups-feature in JUNOS? Here is an example:

groups {
    randy-bush {
        policy-options {
            policy-statement <*> {
                from {
                    route-filter 42.0.0.0/8 orlonger;
                }   
            }
        }
    }
}
policy-options {
    policy-statement pl-foo {
        apply-groups randy-bush;
    }
}

In the config, that ultimately shows up as:

[edit policy-options]
sabri at host# show | display inheritance 

policy-statement pl-sabri {
    ##
    ## 'from' was inherited from group 'randy-bush'
    ##
    from {
        ##
        ## 'orlonger' was inherited from group 'randy-bush'
        ##
        route-filter 42.0.0.0/8 orlonger;
    }
}

Thanks,

-- 
Sabri

please do not throw salami pizza away