RIP (or any other IGP) route filtering using Extended ACL

August 3, 2008 at 3:53 pm | Posted in Routing | Leave a comment

This example is to prevent the route learnt via router off interface Serial0.

access-list 199 deny  ip host host
access-list 199 permit ip any any

router rip
version 2
distribute-list 199 in Serial0
no auto-summary

I usually make mistake with creating extended ACL for this purpose. I do
tend to put learnt route as source address of ACL, before the gateway
(destination address). The right ACL should be created in the
reverse order, as above.

NOTE that:

Extended ACL when called as a distribute-list in IGP have a different meaning than in redistribution or as in BGP.


Leave a Comment »

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Create a free website or blog at
Entries and comments feeds.

%d bloggers like this: