We're Sorry, Full Content Access is for Members Only...

If you like to keep on reading, Become a Member Now! Here is Why:

  • Learn any CCNA, CCNP and CCIE R&S Topic. Explained As Simple As Possible.
  • Try for Just $1. The Best Dollar You've Ever Spent on Your Cisco Career!
  • Full Access to our 581 Lessons. More Lessons Added Every Week!
  • Content created by Rene Molenaar (CCIE #41726)

 

295 New Members signed up the last 30 days!

satisfaction-guaranteed

100% Satisfaction Guaranteed!
You may cancel your monthly membership at any time.
No Questions Asked!


Forum Replies

  1. Rene what will happen if both router-map and access-list are deny?

    route-map NAME deny 10
    match ip address 1
    
    ip access-list standard 1
    deny 1.1.1.0
    permit any

    thanks!

  2. correction it's "route-map" not "router-map".

    sorry for typo

  3. Hi John,

    That's a nice trick question, here's what happens:

    Everything in NAME deny 10 with a permit in the access-list will be denied, so this matches the "permit any".

    This means that "1.1.1.0" can be processed further down the route-map, however we don't have any other route-map statements so it will be denied anyway.

    If you would add a "route-map NAME permit 20" with nothing in it then the 1.1.1.0 network would match there and it will be permitted.

    Rene

  4. Hi George,

    Sure, here's an example. We have a router that has learned some EIGRP routes on different interfaces:

    R1#show ip route eigrp 
    Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
           D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area 
           N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
           E1 - OSPF external type 1, E2 - OSPF external type 2
           i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
           ia - IS-IS inter area, * - candidate default, U - per-user static route
           o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
           a - application route
           + - replicated route, % - next hop override, p - overrides from PfR
    
    Gateway of last resort is not set
    
          2.0.0.0/32 is subnetted, 1 subnets
    D        2.2.2.2 [90/130816] via 192.168.12.2, 01:00:49, GigabitEthernet0/1
          3.0.0.0/32 is subnetted, 1 subnets
    D        3.3.3.3 [90/130816] via 192.168.13.3, 01:00:50, GigabitEthernet0/2
          4.0.0.0/32 is subnetted, 1 subnets
    D        4.4.4.4 [90/130816] via 192.168.14.4, 01:00:49, GigabitEthernet0/3
    D     192.168.23.0/24 [90/3072] via 192.168.13.3, 01:00:49, GigabitEthernet0/2
                          [90/3072] via 192.168.12.2, 01:00:49, GigabitEthernet0/1
    D     192.168.24.0/24 [90/3072] via 192.168.14.4, 01:00:49, GigabitEthernet0/3
                          [90/3072] via 192.168.12.2, 01:00:49, GigabitEthernet0/1
    D     192.168.34.0/24 [90/3072] via 192.168.14.4, 01:00:49, GigabitEthernet0/3
                          [90/3072] via 192.168.13.3, 01:00:49, GigabitEthernet0/2

    Let's enable a route-map that matches on interface Gigabit0/1 and attach it as a distribute-list:

    R1(config)#route-map ONLY_FIRST_GIG permit 10
    R1(config-route-map)#match interface GigabitEthernet 0/1
    
    R1(config)#router eigrp 1  
    R1(config-router)#distribute-list route-map ONLY_FIRST_GIG in

    Now the routing table looks like this:

    R1#show ip route eigrp 
    Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
           D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area 
           N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
           E1 - OSPF external type 1, E2 - OSPF external type 2
           i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
           ia - IS-IS inter area, * - candidate default, U - per-user static route
           o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
           a - application route
           + - replicated route, % - next hop override, p - overrides from PfR
    
    Gateway of last resort is not set
    
          2.0.0.0/32 is subnetted, 1 subnets
    D        2.2.2.2 [90/130816] via 192.168.12.2, 00:00:13, GigabitEthernet0/1
          3.0.0.0/32 is subnetted, 1 subnets
    D        3.3.3.3 [90/131072] via 192.168.12.2, 00:00:12, GigabitEthernet0/1
          4.0.0.0/32 is subnetted, 1 subnets
    D        4.4.4.4 [90/131072] via 192.168.12.2, 00:00:13, GigabitEthernet0/1
    D     192.168.23.0/24 [90/3072] via 192.168.12.2, 00:00:13, GigabitEthernet0/1
    D     192.168.24.0/24 [90/3072] via 192.168.12.2, 00:00:13, GigabitEthernet0/1
    D     192.168.34.0/24 [90/3328] via 192.168.12.2, 00:00:12, GigabitEthernet0/1

    There we go, only routes learned on Gigabit0/1 are accepted.

    Hope this helps.

    Rene

  5. Hi Rene,

    I have a quick question on EIGRP filtering in general. Say I have 3 routers, R1, R2, and R3 all running EIGRP and connected.

    R1 has 10.10.10.0/24 and 20.20.20.0/24
    If I want to advertise 10.10.10.0/24 only to R3 but not R2..
    From reading your lesson, I learned that I can apply a distribute-list acl in on R3 to block the advertisement of 10.10.10.0/24...

    Can this be done on R1 to filter outbound EIGRP advertisement of 10.10.10.0/24 only to R3 but not R2?

    Thanks!

    Barry

18 more replies! Ask a question or join the discussion by visiting our Community Forum