RE: How can you deny RIP in an extended ACL ?

From: Fabrice Bobes (study@6colabs.com)
Date: Sun Jun 08 2003 - 22:15:46 GMT-3

• Next message: Jonathan V Hays: "RE:"
• Previous message: Jonathan V Hays: "RE: Unfair Hiring"
• Maybe in reply to: Mr. Richard L. Pickard: "How can you deny RIP in an extended ACL ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Richard,

RIP uses UDP port 520.
RIP 1 broadcasts its messages.
RIP 2 multicasts (224.0.0.9) its messages but broadcasts them if running
in a RIP 1 compatible mode.

You can filter via "deny udp any any eq rip" but if you are asked to be
more precise:

- filtering RIP 1 messages only
Access-list 101 deny udp any host 255.255.255.255 eq 520

- filtering RIP 2 messages only
Access-list 101 deny udp any host 224.0.0.9 eq 520

Thanks,

Fabrice

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Mr. Richard L. Pickard
Sent: Sunday, June 08, 2003 2:42 PM
To: ccielab@groupstudy.com
Subject: How can you deny RIP in an extended ACL ?

Fiesta

I am noticing that access-list 101 deny RIP any any
is not an option

[GroupStudy removed an attachment of type image/jpeg which had a name of
Fiesta Bkgrd.jpg]

• Next message: Jonathan V Hays: "RE:"
• Previous message: Jonathan V Hays: "RE: Unfair Hiring"
• Maybe in reply to: Mr. Richard L. Pickard: "How can you deny RIP in an extended ACL ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jul 04 2003 - 11:10:55 GMT-3