Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
479
Views
15
Helpful
7
Replies

Question about AS Path Access Lists

Go to solution
johnnylingo
Level 5
Level 5

‎03-11-2008 01:47 PM - edited ‎03-03-2019 09:05 PM

If I have the following AS Path access list:

ip as-path access-list 100 permit ^1234_[0-9]*$

Will this match all AS's with a path through AS 1234, or just AS's adjacent to AS 1234?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
guruprasadr
Level 7
Level 7
In response to johnnylingo

‎03-12-2008 12:46 AM

HI Johnny, [Pls Rate if HELPS]

ip as-path access-list 100 permit ^1234_[0-9]*$

The above As-Path List will match the AS's only adjacent to AS1234.

To match more AS's with a path through AS 1234 means, Configure as below:

ip as-path access-list 100 permit ^1234_[0-9]*_[0-9]*_[0-9]*$

Hope i am Informative.

Pls Rate if HELPS

Best Regards,

Guru Prasad R

View solution in original post

0 Helpful
7 Replies 7

Go to solution
Danilo Dy
VIP Alumni
VIP Alumni

‎03-11-2008 08:14 PM

Hi,

This means to match any network originated from AS1234 and directly attached to AS1234.

Regards,

Dandy

Go to solution
johnnylingo
Level 5
Level 5
In response to Danilo Dy

‎03-11-2008 08:24 PM

Hmmm...so how would I match only the AS's adjacent to AS 1234?

0 Helpful

Go to solution
guruprasadr
Level 7
Level 7
In response to johnnylingo

‎03-12-2008 12:46 AM

HI Johnny, [Pls Rate if HELPS]

ip as-path access-list 100 permit ^1234_[0-9]*$

The above As-Path List will match the AS's only adjacent to AS1234.

To match more AS's with a path through AS 1234 means, Configure as below:

ip as-path access-list 100 permit ^1234_[0-9]*_[0-9]*_[0-9]*$

Hope i am Informative.

Pls Rate if HELPS

Best Regards,

Guru Prasad R

0 Helpful

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to guruprasadr

‎03-12-2008 04:51 AM

John

I think we should be clear about Dandy's answer and what he meant about originate. If he meant originate in terms of this is the neighbor that passed the update to you then his explanation is correct that the regular expression would identify your neighbor AS and ASes directly connected to that AS. If he meant originate in the sense of the AS where the prefix is actually located then he got it backward. To identify the AS where the prefix is actually located the1234 would be next to the $ and not next to the ^.

HTH

Rick

HTH

Rick
0 Helpful

Go to solution
johnnylingo
Level 5
Level 5
In response to guruprasadr

‎03-12-2008 08:45 PM

I just tried this out in a lab, and you are correct.

0 Helpful

Go to solution
mheusing
Cisco Employee
Cisco Employee

‎03-12-2008 05:03 AM

Hi,

To match all prefixes received through AS 1234 irrespective of originating AS and path length use

ip as-path access-list 101 permit ^1234_

As already mentioned by the other posts the given AS Path ACL will match pathes received through 1234 and with a total path length of two ASes.

As a short reminder, an AS Path ACL with regular expressions treats the AS path as a text string with:

^ denotes begin of string

$ denotes end of string

_ denotes a delimiter like a space

* denotes one or more

Hope this helps! Please use the rating system.

Regards, Martin

Go to solution
johnnylingo
Level 5
Level 5
In response to mheusing

‎03-12-2008 08:48 PM

You are absolutely correct

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card