Hello,

I have this simple lab to practise filtering traffic so R1 and R2 can't see each other in there routing tables:

I've tried 3 methods and only example 1 seems to work, what am I doing wrong?

Example 1 (Worked)

R3

router eigrp 200

redistribute eigrp 100

network 10.1.1.0 0.0.0.255

network 10.1.2.0 0.0.0.255

distribute-list 2 out FastEthernet0/0

distribute-list 1 out Serial0/0

no auto-summary

!        

access-list 1 deny   10.1.2.0 0.0.0.255 log

access-list 1 permit any log

access-list 2 deny   10.1.1.0 0.0.0.255 log

access-list 2 permit any log

Example 2 (Didn't work the can ping each other)

R3

router eigrp 200

redistribute eigrp 100

network 10.1.1.0 0.0.0.255

network 10.1.2.0 0.0.0.255

distribute-list 101 out FastEthernet0/0

distribute-list 100 out Serial0/0

no auto-summary

!        

access-list 100 deny   ip 10.1.2.0 0.0.0.255 10.1.1.0 0.0.0.255 log

access-list 100 permit ip any any

access-list 101 deny   ip 10.1.1.0 0.0.0.255 10.1.2.0 0.0.0.255 log

access-list 101 permit ip any any

Example 3 (Didn't work they can ping each other)

R3

interface FastEthernet0/0

ip address 10.1.2.3 255.255.255.0

ip policy route-map pbr2

duplex auto

speed auto

!

interface Serial0/0

ip address 10.1.1.3 255.255.255.0

encapsulation ppp

ip policy route-map pbr1

clock rate 2000000

!

access-list 1 permit 10.1.2.0 0.0.0.255 log

access-list 2 permit 10.1.1.0 0.0.0.255 log

!

route-map pbr1 deny 10

match ip address 1

!

route-map pbr1 permit 20

!

route-map pbr2 deny 10

match ip address 2

!        

route-map pbr2 permit 20

Maybe on example 2 I could use 1 route-map and redistribute into eigrp 200?

Hopefully someone with a fresh pair of eyes can help?

Thanks