285
export
: Filters routes advertised to the peer/peer group.
import
: Filters routes received from the peer/peer group.
Usage guidelines
The specified ACL referenced by the
peer filter-policy
command must have been created with the
acl
command in system view. Otherwise, all routes can pass the ACL.
If you use a basic ACL (with a number from 2000 to 2999) configured with the
rule
[
rule-id
] {
deny
|
permit
}
source
source-address
source-wildcard
command, the command matches whose destination
network addresses match the
source-address source-wildcard
argument without matching the masks of
the destination addresses.
If you want to use an advanced ACL (with a number from 3000 to 3999) in the command, the ACL
should be configured with the
rule
[
rule-id
] {
deny
|
permit
}
ip source
sour-addr sour-wildcard
command to deny/permit a route with the specified destination, or with the
rule
[
rule-id
] {
deny
|
permit
}
ip source
sour-addr sour-wildcard
destination
dest-addr dest-wildcard
command to deny/permit
a route with the specified destination and mask. The
source
keyword specifies the destination address of
a route and the
destination
keyword specifies the subnet mask of the destination. The subnet mask must
be contiguous. Otherwise, the configuration does not take effect.
Examples
# In BGP IPv4 unicast instance view, apply ACL 2000 to filter routes advertised to the peer group
test
.
<Sysname> system-view
[Sysname] bgp 100
[Sysname-bgp] ipv4-family unicast
[Sysname-bgp-ipv4] peer test filter-policy 2000 export
# In BGP-VPN IPv6 unicast instance view, apply ACL6 2000 to filter routes advertised to the peer group
test
.
<Sysname> system-view
[Sysname] bgp 100
[Sysname-bgp] ip vpn-instance vpn1
[Sysname-bgp-vpn1] ipv6-family unicast
[Sysname-bgp-ipv6-vpn1] peer test filter-policy 2000 export
Related commands
•
acl
(
ACL and QoS Command Reference
)
•
filter-policy export
•
filter-policy import
•
peer as-path-acl
•
peer prefix-list
•
peer route-policy
peer group
Use
peer
group
to add a peer to a peer group.
Use
undo peer
group
to delete a specified peer from a peer group.
Syntax
peer
{
ip-address
|
ipv6-address
}
group
group-name
[
as-number
as-number
]