R3721-F3210-F3171-HP High-End Firewalls Network Management Command Reference-6PW101
448
[Sysname-acl-adv-3000] rule 100 deny ip
[Sysname-acl-adv-3000] quit
[Sysname] isis 1
[Sysname-isis 1] filter-policy 3000 export
filter-policy import (IS-IS view)
Syntax
filter-policy { acl-number | ip-prefix ip-prefix-name | route-policy route-policy-name } import
undo filter-policy import
View
IS-IS view
Default level
2: System level
Parameters
acl-number: Specifies the number of an ACL that is used to filter routes calculated from received LSPs,
ranging from 2000 to 3999. For ACL configuration information, see Access Control Command
Reference.
ip-prefix ip-prefix-name: Specifies the name of an IP prefix list that is used to filter routes calculated from
received LSPs, a case-sensitive string of 1 to 19 characters. For IP prefix list configuration information, see
"Routing policy configuration commands."
route-policy route-policy-name: Specifies the name of a routing policy that is used to filter routes
calculated from received LSPs, a case-sensitive string of 1 to 63 characters. For routing policy
configuration information, see "Routing policy configuration commands."
Description
Use filter-policy import to configure IS-IS to filter routes calculated from received LSPs.
Use undo filter-policy import to disable IS-IS from filtering routes calculated from received LSPs.
IS-IS does not filter routes calculated from received LSPs by default.
NOTE:
• If you want to reference an advanced ACL (with a number from 3000 to 3999) in the command or in the
routing policy, the ACL should be configured with the rule [
rule-id
] { deny | permit } ip source
sour-addr sour-wildcard
command to deny/permit a route with the specified destination, or with the
rule [
rule-id
] { deny | permit } ip source
sour-addr sour-wildcard
destination
dest-addr dest-
w
ildcar
d
command to deny/permit a route with the specified destination and mask. The source keyword specifies
the destination address of a route and the destination keyword specifies the subnet mask of the route
(the subnet mask must be valid; otherwise, the configuration is ineffective).
• If no topology is specified, the routes calculated in the base topology will be filtered.
Related commands: filter-policy export.
Examples
# Reference ACL 2000 to filter routes calculated from received LSPs.
<Sysname> system-view
[Sysname] acl number 2000