Matching based on as-path acl, Matching based on community acl, Matching based on destination network – Brocade Virtual ADX Switch and Router Guide (Supporting ADX v03.1.00) User Manual

Page 269

Advertising
background image

Brocade Virtual ADX Switch and Router Guide

255

53-1003246-01

Filtering

8

The protocol bgp static-network parameter matches on BGP4 static network routes.

The protocol bgp external parameter matches on eBGP (external) routes.

The protocol bgp internal parameter matches on iBGP (internal) routes.

The following sections contain examples of how to configure route maps that include match
statements that match on ACLs.

Matching based on AS-path ACL

To construct a route map that matches based on AS-path ACL 1, enter the following commands.

Virtual ADX(config)# route-map PathMap permit 1

Virtual ADX(config-routemap PathMap)# match as-path 1

Syntax: [no] match as-path num

The num parameter specifies an AS-path ACL and can be a number from 1 – 199. You can specify
up to five AS-path ACLs. To configure an AS-path ACL, use the ip as-path access-list command.
Refer to

“Defining an AS-path ACL”

on page 247.

Matching based on community ACL

To construct a route map that matches based on community ACL 1, enter the following commands.

Virtual ADX(config)# ip community-list 1 permit 123:2

Virtual ADX(config)# route-map CommMap permit 1

Virtual ADX(config-routemap CommMap)# match community 1

Syntax: [no] match community string

The string parameter specifies a community list ACL. To configure a community list ACL, use the ip
community-list command. Refer to

“Defining a community ACL”

on page 250.

Matching based on destination network

You can use the results of an IP ACL or an IP prefix list as the match condition.

To construct a route map that matches based on destination network, enter commands such as
the following.

Virtual ADX(config)# route-map NetMap permit 1

Virtual ADX(config-routemap NetMap)# match ip address 1

Syntax: [no] match ip address ACL-name-or-num

Syntax: [no] match ip address prefix-list name

The name-or-num parameter with the first command specifies an IP ACL and can be a number from
1 – 199 or the ACL name if it is a named ACL. To configure an IP ACL, use the ip access-list or
access-list command. Refer to the

Access Control List

chapter in the Virtual ADX Security Guide.

The name parameter with the second command specifies an IP prefix list name. To configure an IP
prefix list, refer to

“Defining and applying IP prefix lists”

on page 250.

Advertising
Popular Brands
Popular manuals