Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Network Management Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
281282283284285286287288289290
260
If a protocol is specified, RIP filters only the routes redistributed from the specified routing protocol.
Otherwise, RIP filters all routes to be advertised.
If interface-type interface-number is specified, RIP filters only the routes advertised by the specified
interface. Otherwise, RIP filters routes advertised by all RIP interfaces.
If you want to reference an advanced ACL (with a number from 3000 to 3999) in the command, the ACL
should be configured with the rule [ rule-id ] { deny | permit } ip source sour-addr sour-wildcard
command to deny/permit a route with the specified destination, or with the rule [ rule-id ] { deny | permit }
ip source sour-addr sour-wildcard destination dest-addr dest-wildcard command to deny/permit a route
with the specified destination and mask. The source keyword specifies the destination address of a route
and the destination keyword specifies the subnet mask of the route (the subnet mask must be valid;
otherwise, the configuration is ineffective).
Related commands: import-route, ip ip-prefix, and acl (Access Control Command Reference).
Examples
# Reference ACL 2000 to filter outbound routes.
<Sysname> system-view
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule deny source 192.168.10.0 0.0.0.255
[Sysname-acl-basic-2000] quit
[Sysname] rip 1
[Sysname-rip-1] filter-policy 2000 export
# Reference IP prefix list abc to filter outbound routes on GigabitEthernet 0/1.
[Sysname-rip-1] filter-policy ip-prefix abc export gigabitethernet 0/1
# Configure ACL 3000 to permit only route 113.0.0.0/16 to pass, and reference ACL 3000 to filter
outbound routes.
<Sysname> system-view
[Sysname] acl number 3000
[Sysname-acl-adv-3000] rule 10 permit ip source 113.0.0.0 0 destination 255.255.0.0 0
[Sysname-acl-adv-3000] rule 100 deny ip
[Sysname-acl-adv-3000] quit
[Sysname] rip 1
[Sysname-rip 1] filter-policy 3000 export
filter-policy import (RIP view)
Syntax
filter-policy { acl-number | gateway ip-prefix-name | ip-prefix ip-prefix-name [ gateway ip-prefix-name ] }
import [ interface-type interface-number ]
undo filter-policy import [ interface-type interface-number ]
View
RIP view
Default level
2: System level
Parameters
acl-number: Number of the ACL used for filtering incoming routes, in the range of 2000 to 3999.