04-07-2014 03:48 PM - edited 03-07-2019 07:01 PM
Solved! Go to Solution.
04-07-2014 04:54 PM
Hello
example - neighboring eigrp peer is 11.11.11.2
distance command filtering
access-list 10 permit 0.0.0.0
router eigrp xx
distance 255 11.11.11.2 0.0.0.0 10
Distribute-list filtering
access-list 100 deny ip host 11.11.11.2 any
access-list 100 permit ip any any
router eigrp xx
distribute-list 100 in (interface)
res
Paul
04-08-2014 12:22 PM
Hello
When using distribute list in eigrp with acl you match on the advertised peer and what you you want to filter.
in this case acl 100 will match on any prefix originating from eigrp peer11.11.11.2 and deny it inbound
res
Paul
04-07-2014 04:54 PM
Hello
example - neighboring eigrp peer is 11.11.11.2
distance command filtering
access-list 10 permit 0.0.0.0
router eigrp xx
distance 255 11.11.11.2 0.0.0.0 10
Distribute-list filtering
access-list 100 deny ip host 11.11.11.2 any
access-list 100 permit ip any any
router eigrp xx
distribute-list 100 in (interface)
res
Paul
04-08-2014 08:20 AM
Thanks Paul,
Does "access-list 100 deny ip host 11.11.11.2 any" deny only network 11.11.11.2/32 or denies the whole peer that could be advertising way more networks? So I can use /32 access-lists not only to deny/permit networks from receiving/advertising but also deny all networks advertised/received from/to specific neighbouring peer?
04-08-2014 12:22 PM
Hello
When using distribute list in eigrp with acl you match on the advertised peer and what you you want to filter.
in this case acl 100 will match on any prefix originating from eigrp peer11.11.11.2 and deny it inbound
res
Paul
09-30-2014 11:03 AM
Thanks Paul - now I gave to do the same thing on Nexus OS.
There is no distribute list by ACL, so wondering how I can do the same thing but on NX-OS?
09-30-2014 01:36 PM
Hello Ruterford ,
On nexus we can apply distribute list on an interface using either prefix-list or route map .
Hope this helps .
Regards
Sunil Bhadauria
!Kindly rate the post if helpful !
10-06-2014 07:42 AM
Thanks Sunil,
Can you please give me an example ?
As I need to filter by neighbour and not by prefix.
Thx.
12-28-2017 07:28 AM
I realize this is an old thread, but for the sake of completeness, this is how you apply an outbound EIGRP filter in NX-OS:
interface EthX/X ip distribute-list eigrp <ID> prefix-list <PL-MYLIST> out end
Only "permit" matches within the "PL-MYLIST" will be announced to the neighbor.
This appears to work in NX-OS v7, but I'm not sure at what point this feature was introduced.
Regards
James.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide