EIGRP ACL

Unanswered Question
Nov 12th, 2008
User Badges:

Hello,


I want to block the redistribution of the 172.16.0.0/16 to the neighbor routers. Important is that I only wnat to block the 172.16.0.0/16 (supernet) but not subnets like 172.16.1.0/24, 172.16.2.0/24 and so on.


I am not quite sure which acl statement to use.


router eigrp 1111

distribute-list out 20


access-list 20 deny 172.16.0.0 0.0.0.0

access-list 20 permit any



Will this do the intented?


thank you for your help in advance.


Best regards,

Andreas

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Edison Ortiz Wed, 11/12/2008 - 18:38
User Badges:
  • Super Bronze, 10000 points or more
  • Hall of Fame,

    Founding Member

Andreas,


To take into account subnet information, I much rather use prefix-list over ACL.


ip prefix-list NET172 deny 172.16.0.0/16

ip prefix-list NET172 permit 0.0.0.0/0 le 32


HTH,


__


Edison.


Please rate helpful posts

andreas.plaul Mon, 11/17/2008 - 17:26
User Badges:

Hello,


thank you for your input and I managed to do it with the access lists.


Best regards,

Andreas

Actions

This Discussion