HP VPN Firewall Appliances Network Management Command Reference
286
Related commands
• acl (ACL and QoS Command Reference)
• import-route
• ip ip-prefix
filter-policy import (RIP view)
Use filter-policy import to configure RIP to filter the inbound routes.
Use undo filter-policy import to restore the default.
Syntax
filter-policy { acl-number | gateway ip-prefix-name | ip-prefix ip-prefix-name [ gateway ip-prefix-name ] }
import [ interface-type interface-number ]
undo filter-policy import [ interface-type interface-number ]
Default
RIP does not filter inbound routes.
Views
RIP view
Default command level
2: System level
Parameters
acl-number: Specifies an ACL by its number in the range of 2000 to 3999 to filter inbound routes.
ip-prefix ip-prefix-name: Specifies an IP prefix list by its name, a string of 1 to 19 characters, to filter
inbound routes.
gateway ip-prefix-name: Specifies an IP prefix list by its name, a string of 1 to 19 characters, to filter
routes from the gateway.
interface-type interface-number: Specifies an interface by its type and number.
Usage guidelines
To reference an advanced ACL (with a number from 3000 to 3999) in the command, configure the ACL
in one of the following ways:
• To deny/permit a route with the specified destination, use the rule [ rule-id ] { deny | permit } ip
source sour-addr sour-wildcard command
• To deny/permit a route with the specified destination and mask, use the rule [ rule-id ] { deny |
permit } ip source sour-addr sour-wildcard destination dest-addr dest-wildcard command.
The source keyword specifies the destination address of a route and the destination keyword specifies the
subnet mask of the route. The subnet mask must be contiguous. Otherwise, the configuration does not
take effect.
Examples
# Use ACL 2000 to filter inbound RIP routes.
<Sysname> system-view
[Sysname] acl number 2000
[Sysname-acl-basic-2000] rule deny source 192.168.10.0 0.0.0.255