Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

passive - distribute-list help!!!!!

Hello All,

I have a situation and I need help. I don't want the WAN router to learn a subnet that is coming out of two LAN routers (10.10.10.0/24) and let other ones through (see diagram) I was thinking about passive-interface with a distribute-list, but because of the type of switches (Cat6k-MSFC2) I don't know how to apply it. Any suggestion would be greatly appreciated.

Thank you very much for your assistance.

Cheers!!!

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Bronze

Re: passive - distribute-list help!!!!!

Mauricio,

Per your diagram, you will apply the distribute-list in under the EIGRP process in the WAN router, pointing to the interface that is connected to the L2 switch.

The list will reference an ACL that blocks 10.10.10.0/24 and then permit any

Please refer to the documentation on the syntax:

http://www.cisco.com/en/US/docs/ios/iproute/command/reference/irp_pi1.html#wp1018093

HTH,

__

Edison.

3 REPLIES
Hall of Fame Super Silver

Re: passive - distribute-list help!!!!!

Mauricio

I believe that there is some confusion in your question. You say that you are thinking about using passive-interface with a distribute-list. But passive-interface does not work with distribute-list. If you have passive-interface then the router learns no routing updates on that interface. With a distribute-list the router can learn certain routes through the interface but does not learn certain other routes. From your description I believe that you need distribute-list and not passive-interface.

HTH

Rick

New Member

Re: passive - distribute-list help!!!!!

Thanks Rick, now where and how would apply the distribute-list?

Cheers!

Hall of Fame Super Bronze

Re: passive - distribute-list help!!!!!

Mauricio,

Per your diagram, you will apply the distribute-list in under the EIGRP process in the WAN router, pointing to the interface that is connected to the L2 switch.

The list will reference an ACL that blocks 10.10.10.0/24 and then permit any

Please refer to the documentation on the syntax:

http://www.cisco.com/en/US/docs/ios/iproute/command/reference/irp_pi1.html#wp1018093

HTH,

__

Edison.

158
Views
0
Helpful
3
Replies