63
•
To deny/permit a route with the specified destination and mask, use the
rule
[
rule-id
] {
deny
|
permit
}
ip source
sour-addr sour-wildcard
destination
dest-addr dest-wildcard
command.
The
source
keyword specifies the destination address of a route and the
destination
keyword specifies the
subnet mask of the route. The specified subnet mask must be contiguous. Otherwise, the mask
configuration does not take effect.
Examples
# Use ACL 2000 to filter redistributed routes.
<Sysname> system-view
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule deny source 192.168.10.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] rip 1
[Sysname-rip-1] filter-policy 2000 export
# Use IP prefix list
abc
to filter redistributed routes.
<Sysname> system-view
[Sysname] ip prefix-list abc index 10 permit 11.0.0.0 8
[Sysname] rip 1
[Sysname-rip-1] filter-policy prefix-list abc export
# Configure ACL 3000 to permit only route 113.0.0.0/16 to pass. Use ACL 3000 to filter redistributed
routes.
<Sysname> system-view
[Sysname] acl number 3000
[Sysname-acl-adv-3000] rule 10 permit ip source 113.0.0.0 0 destination 255.255.0.0 0
[Sysname-acl-adv-3000] rule 100 deny ip
[Sysname-acl-adv-3000] quit
[Sysname] rip 1
[Sysname-rip 1] filter-policy 3000 export
Related commands
•
acl
(
ACL and QoS Command Reference
)
•
import-route
•
ip prefix-list
filter-policy import
Use
filter-policy
import
to configure RIP to filter received routes.
Use
undo filter-policy import
to remove the configuration.
Syntax
filter-policy
{
acl-number
|
gateway
prefix-list-name
|
prefix-list
prefix-list-name
[
gateway
prefix-list-name
] }
import
[
interface-type
interface-number
]
undo filter-policy
import
[
interface-type
interface-number
]
Default
RIP does not filter received routes.
