23.1.12

RIPv2 Prefix-List ile Route Filtreleme

Prefix list kullanarak route filtreleme mümkündür. Örneğin R5'teki Switch-2'deki routing tablosu şöyle olsun:

SW2#sh ip route rip
R    222.22.2.0/24 [120/9] via 155.1.58.5, 00:00:02, Vlan58
R    204.12.1.0/24 [120/2] via 155.1.58.5, 00:00:02, Vlan58
     155.1.0.0/24 is subnetted, 10 subnets
R       155.1.146.0 [120/2] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.13.0 [120/2] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.0.0 [120/1] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.5.0 [120/1] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.45.0 [120/1] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.37.0 [120/2] via 155.1.58.5, 00:00:02, Vlan58
R       155.1.67.0 [120/8] via 155.1.58.5, 00:00:03, Vlan58
R    220.20.3.0/24 [120/9] via 155.1.58.5, 00:00:03, Vlan58
     54.0.0.0/24 is subnetted, 1 subnets
R       54.1.1.0 [120/8] via 155.1.58.5, 00:00:03, Vlan58
R    212.18.1.0/24 [120/9] via 155.1.58.5, 00:00:03, Vlan58
R    212.18.0.0/24 [120/9] via 155.1.58.5, 00:00:03, Vlan58
R    212.18.3.0/24 [120/9] via 155.1.58.5, 00:00:03, Vlan58
R    212.18.2.0/24 [120/9] via 155.1.58.5, 00:00:03, Vlan58
R    192.10.1.0/24 [120/2] via 155.1.58.5, 00:00:03, Vlan58
     31.0.0.0/14 is subnetted, 1 subnets
R       31.0.0.0 [120/2] via 155.1.58.5, 00:00:03, Vlan58
     150.1.0.0/24 is subnetted, 7 subnets
R       150.1.6.0 [120/8] via 155.1.58.5, 00:00:03, Vlan58
R       150.1.5.0 [120/1] via 155.1.58.5, 00:00:03, Vlan58
R       150.1.4.0 [120/2] via 155.1.58.5, 00:00:05, Vlan58
R       150.1.3.0 [120/2] via 155.1.58.5, 00:00:05, Vlan58
R       150.1.2.0 [120/2] via 155.1.58.5, 00:00:05, Vlan58
R       150.1.1.0 [120/2] via 155.1.58.5, 00:00:05, Vlan58
R    205.90.31.0/24 [120/9] via 155.1.58.5, 00:00:05, Vlan58
     30.0.0.0/14 is subnetted, 1 subnets
R       30.0.0.0 [120/2] via 155.1.58.5, 00:00:05, Vlan58
30.0.0.0 ve 31.0.0.0 network'lerini routing tablosundan filtreleyelim. Access-List'lere benzer şekilde bir Pefix-List oluşturularak filtreleme yapılabilir.
R5(config)#ip prefix-list RIP_FILTER_TO_SW2 seq 5 deny 30.0.0.0/14
R5(config)#ip prefix-list RIP_FILTER_TO_SW2 seq 10 deny 31.0.0.0/14
R5(config)#ip prefix-list RIP_FILTER_TO_SW2 seq 15 permit 0.0.0.0/0 le 32
R5(config)#router rip
R5(config-router)#distribute-list prefix RIP_FILTER_TO_SW2 out fastEthernet 0/0
R5(config-router)#end
 Bir süre sonra ilgili network'lerin routing tablosundan silindği görülür.
SW2#sh ip route 31.0.0.0
% Network not in table
SW2#sh ip route 30.0.0.0
% Network not in table
Gönderen zaman: 21:05
Etiketler: , ,

0 yorum:

Yorum Gönder

Kaydol: Kayıt Yorumları (Atom)