From: Ramy Sisy (ramysisy@inspiredmaster.com)
Date: Tue Jul 22 2008 - 18:06:12 ART
Hi Fahad,
Each vendor has his own tricks to attract people to their products so
sometimes some vendors can create complicated questions to indirectly affect
people's thoughts that they will lose without their products. That is why
Cisco is coming up with official CCIE curriculum in the near future to
standardize CCIE training.
Maybe this is not the case here as I believe in IE professional
deliverables, but in general, I recommend you to be very cool and never
panic about any little trick like what you have in your mail.
Do your best to study hard and you will be fine.
BEST REGARDS,
RAMY SISY, CCIE X 2 (SECURITY, ROUTING/SWITCHING)#17321, CCSI#30417
CCIE PROGRAM MANAGER
INSPIRED MASTER
INSPIRING CREATIVE THINKING ....
WWW.INSPIREDMASTER.COM
E. RAMYSISY@INSPIREDMASTER.COM
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Fahad Khan
Sent: Tuesday, July 22, 2008 12:08 PM
To: GS CCIE-Lab
Cc: smorris@internetworkexpert.com; Narbik Kocharians; Brian McGahan; Joseph
Brunner; bdennis@internetworkexpert.com
Subject: Re: RIP route filtering using Extended ACL
Dear All and specially all respected instructors,
For my CCIE lab exam preparation , I have been going thorugh DOC CD
(Configuration guides, Command ref guides, Design guides, tech notes,
different white papers, FAQs and other relevant stuff on cisco site) and
other practice labs. But the important thing I want to ask that these kind
of things (like in this thread, use of ext ACL for IGPs) i didnt find in DOC
CD. Kindly let me know where and how can I find such strange and hidden
things on cisco portal. I will be very thankful to you.
Thanks and regards,
On 7/22/08, Larry <cc13lab@gmail.com> wrote:
>
> Fahad,
>
> Here is a link explaining it with RIP:
>
>
>
>
http://blog.internetworkexpert.com/category/ccie-routing-switching/interior-
gateway-routing/page/2/
>
>
> hth
>
>
> On 7/22/08, Fahad Khan <fahad.khan@gmail.com> wrote:
>
>> well, i am still unable to understand , how Ext ACL is used in RIP(with
>> dist-list) and why? Can any one shed more light over it?
>>
>> Thanks and regards,
>>
>> On Tue, Jul 22, 2008 at 3:00 AM, Huan Pham <pnhuan@yahoo.com> wrote:
>>
>> > Hi Khan,
>> >
>> >
>> >
>> > Thanks for the example. Appearently, the use of extended ACL in the BGP
>> > example is another hair pulling exersize.
>> >
>> >
>> >
>> > But we can use extended ACL for RIP as well, as shown in my example.
>> >
>> >
>> >
>> > Cheers,
>> >
>> >
>> > --- On *Tue, 7/22/08, Fahad Khan <fahad.khan@gmail.com>* wrote:
>> >
>> > From: Fahad Khan <fahad.khan@gmail.com>
>> > Subject: Re: RIP route filtering using Extended ACL
>> > To: "Huan Pham" <Huan.Pham@peopletelecom.com.au>
>> > Cc: ccielab@groupstudy.com
>> > Date: Tuesday, July 22, 2008, 7:00 PM
>> >
>> > Futher more,
>> >
>> > Remember! IP access-list number <1-199> (shown below) is meaning full
>> > *only*,
>> > when you want to perform route filtering in *BGP*
>> >
>> > R1(config-router)#distribute-list ?
>> > <1-199> IP access list number
>> > <1300-2699> IP expanded access list number
>> > WORD Access-list name
>> > gateway Filtering incoming updates based on gateway
>> > prefix Filter prefixes in routing updates
>> >
>> >
>> > In rip and other IGPs, distribute-list works with standard ACL only
>> but
>> > in BGP it can work with extanded ACL as well.
>> >
>> > Go through the link below,
>> >
>>
http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a00801310cb
.shtml#acclists
>> >
>> >
>> > Thanks and regards,
>> >
>> >
>> > On Mon, Jul 21, 2008 at 11:26 PM, Huan Pham
>> > <Huan.Pham@peopletelecom.com.au>
>> > wrote:
>> >
>> > > Hi GS,
>> > >
>> > > I can not find the guide on the use of extended ACL to filter RIP
>> > > routes. May someone please point me the link to this section. Many
>> > > thanks.
>> > >
>> > > The following config is from a vendor workbook. It's to prevent the
>> > > route 150.1.7.0/24 learnt via router 155.1.0.1 off interface Serial0.
>> > >
>> > > access-list 199 deny ip host 155.1.0.1 host 150.1.7.0
>> > > access-list 199 permit ip any any
>> > >
>> > > router rip
>> > > version 2
>> > > network 150.1.0.0
>> > > network 155.1.0.0
>> > > distribute-list 199 in Serial0
>> > > no auto-summary
>> > >
>> > >
>> > > I usually make mistake with creating extended ACL for this purpose. I
>> do
>> > > tend to put subnet route first (source address portion), and the
>> gateway
>> > > after (destination address). The right ACL should be created in the
>> > > reverse order, as above. I can not find relevant info in the RIP
>> > > configuration guide, nor in command reference. Help in understanding
>> > > this command is appreciated.
>> > >
>> > >
>> > > Huan,
>> > >
>> > >
>> > >
>> _______________________________________________________________________
>> > > Subscription information may be found at:
>> > > http://www.groupstudy.com/list/CCIELab.html
>> > >
>> > >
>> > >
>> > >
>> > >
>> >
>> >
>> > --
>> > *FAHAD KHAN
>> >
>> > BE Computer Systems NED,
>> >
>> > CCNA,CCDA,CCNP,FOUNDFE,CLSE,
>> > QOS,JNCIA,JNCIS,MCP,CCIE (Written)
>> >
>> > Systems Support Engineer, Premier Systems (Pvt) limited,
>> >
>> > Karachi, Pakistan
>> >
>> > 92-321-2370510*.
>> >
>> >
>> > _______________________________________________________________________
>> > Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>> >
>> >
>>
>>
>> --
>> *FAHAD KHAN
>>
>> BE Computer Systems NED,
>>
>> CCNA,CCDA,CCNP,FOUNDFE,CLSE,QOS,JNCIA,JNCIS,MCP,CCIE (Written)
>>
>> Systems Support Engineer, Premier Systems (Pvt) limited,
>>
>> Karachi, Pakistan
>>
>> 92-321-2370510.*
>>
>>
>> _______________________________________________________________________
>> Subscription information may be found at:
>> http://www.groupstudy.com/list/CCIELab.html
>>
>>
>>
>>
>>
>
-- *FAHAD KHANBE Computer Systems NED,
CCNA,CCDA,CCNP,FOUNDFE,CLSE,QOS,JNCIA,JNCIS,MCP,CCIE (Written)
Systems Support Engineer, Premier Systems (Pvt) limited,
Karachi, Pakistan
92-321-2370510*.
This archive was generated by hypermail 2.1.4 : Mon Aug 04 2008 - 06:11:56 ART