RE: prefix-list acl equivalency

From: ricky ong (longwaydown@live.com)
Date: Wed Sep 24 2008 - 22:38:51 ART

• Next message: Igor M.: "RE: prefix-list acl equivalency"
• Previous message: Igor M.: "RE: prefix-list acl equivalency"
• Maybe in reply to: Igor M.: "prefix-list acl equivalency"
• Next in thread: Igor M.: "RE: prefix-list acl equivalency"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,
    I think the extended ACL is only effective when used in BGP for route filtering..
 

> Date: Wed, 24 Sep 2008 10:05:21 -0700> From: imanassypov@rogers.com> Subject: RE: prefix-list acl equivalency> To: ccielab@groupstudy.com; joe@affirmedsystems.com> > Thats what I thought, however it does not cut it...> Below is the list of my networks. As you notice, there is one /29 specific in> there. I need to come up with an ACL that would only leak that route...> access-list 101 permit ip 178.2.8.248 0.0.0.0 255.255.255.248 0.0.0.0> > or> > access-list 101 permit ip 0.0.0.0 255.255.255.255 255.255.255.248 0.0.0.0> > dont pass anything> D EX 178.2.8.248/29 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.1.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.2.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.3.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.4.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.5.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> !
 D EX 178.2.6.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.7.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.9.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> D EX 178.2.10.0/24 [170/409600] via 150.100.3.254, 00:00:26, Ethernet0/1> > > > ----------------------> > I.M., M.Eng. P.Eng.> > Network Architect> > CI Investments> > ----------------------> > --- On Wed, 9/24/08, Joseph Brunner <joe@affirmedsystems.com> wrote:> From: Joseph Brunner <joe@affirmedsystems.com>> Subject: RE: prefix-list acl equivalency> To: "'Igor M.'" <imanassypov@rogers.com>, ccielab@groupstudy.com> Received: Wednesday, September 24, 2008, 12:24 PM> > Wouldn't it be> > access-list 101 permit ip 0.0.0.0 255.255.255.255 255.255.255.248 0.0.0.0> > > > -----Original Message-----> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Igor> M.> Sent: Wednesday, September 24, 2008 12:04 PM> To: ccielab@groupstudy.com> Subject: pref!
 ix-list acl equivalency> > Hello,> > What is the access-list e!
 quivalen

cy to the following prefix list for> distribution list purposes:> > ip prefix-list SUB29 seq 5 permit 0.0.0.0/0 ge 29 le 29> > > Thanks!> > ----------------------> > I.M., M.Eng. P.Eng.> > Network Architect> > CI Investments> > ----------------------> > > Blogs and organic groups at http://www.ccie.net> > _______________________________________________________________________> Subscription information may be found at:> http://www.groupstudy.com/list/CCIELab.html> > > Blogs and organic groups at http://www.ccie.net> > _______________________________________________________________________> Subscription information may be found at:> http://www.groupstudy.com/list/CCIELab.html> > > Blogs and organic groups at http://www.ccie.net> > _______________________________________________________________________> Subscription information may be found at: > http://www.groupstudy.com/list/CCIELab.html> > > > > > >

• Next message: Igor M.: "RE: prefix-list acl equivalency"
• Previous message: Igor M.: "RE: prefix-list acl equivalency"
• Maybe in reply to: Igor M.: "prefix-list acl equivalency"
• Next in thread: Igor M.: "RE: prefix-list acl equivalency"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Oct 04 2008 - 09:26:19 ART