Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
289
Views
0
Helpful
2
Replies

EIGRP manipulations

Bekzod Fakhriddinov
Level 4
Level 4

‎09-10-2015 08:18 AM - edited ‎03-08-2019 01:43 AM

HI guys . I have routerA with several subnets/vlans connected-via-EIGRP-to Distribution routerB -firewall-internet.  Distribution router B has whole bunch of routers connected to it (kind of hub and spoke network).

On router A I have vlanX which I wanted to allow go to internet and back from Internet BUT I need to hide the rest of my networks from vlanX, so vlanX will see only path to Internet . The way I know is to include vlanX subnet to EIGRP and then create ACL on routerA to allow/block access . But I guess there might be more elegant way like route filtering or..

Can you share ur opinions please ?

Thank you

Labels:
0 Helpful
2 Replies 2

Richard Burts
Hall of Fame
Hall of Fame

‎09-10-2015 09:54 AM

If I am understanding your requirements correctly then it seems that configuring a VRF and putting vlan X into that VRF would provide separation for that vlan from the rest of your subnets.

 

HTH

 

Rick

HTH

Rick
0 Helpful

Bekzod Fakhriddinov
Level 4
Level 4
In response to Richard Burts

‎09-10-2015 10:52 AM

but VlanX must have access to Internet which is advertised with EIGRP by Distribution RouterB together with  other subnets information . So Vlan x need to know how to go to Internet trough RouterB but shouldn't know other subnets advertised by RouterB . 

The problem is RouterA has other vlans allowed to access those subnets . As more I think as more I figure out that ACLs is only way to do it .

0 Helpful
Customers Also Viewed These Support Documents