Saturday, March 26, 2011

Lab 69 - RIPv2 Filtering with Extended ACL

Prerequisites: CCNP level skills.

Topology
Pic. 1 - Topology Diagram.
Icons designed by: Andrzej Szoblik - http://www.newo.pl

Task 1
Using extended ACL configure RIP filtering so that R3 prefers R1 towards 172.16.104.0/24 and R2 should be the gateway towards 172.16.144.0/24.

Pic. 2 - R3's Current Routing Table.


Lab Solution

Task 1
Using extended ACL configure RIP filtering so that R3 prefers R1 towards 172.16.104.0/24 and R2 should be the gateway towards 172.16.144.0/24.

R3 Configuration:
!
access-list 101 deny   ip host 10.1.13.1 172.16.144.0 0.0.0.255
access-list 101 permit ip any any
access-list 102 deny   ip host 10.1.23.2 172.16.104.0 0.0.0.255
access-list 102 permit ip any any
!
router rip
 version 2
 passive-interface Loopback0
 network 10.0.0.0
 network 172.16.0.0
 distribute-list 101 in Serial0/1
 distribute-list 102 in Serial0/2
 no auto-summary
!

Notice!
Source IP address in an extended ACL matches on the IP address of the advertising router if used with the 'distribute-list'.

Notice!
The 'distribute-list' will not take named ACLs as the arguement (as of the time of writing this post).

Notice!
For the changes to take effect quicker use 'clear ip route *'.

Verification:
Pic. 3 - R3's Routing Table.