Brocade TurboIron 24X Series Configuration Guide User Manual
Page 666
632
Brocade TurboIron 24X Series Configuration Guide
53-1003053-01
Configuring OSPF
To configure an OSPF distribution list:
•
Configure a standard or extended ACL that identifies the routes you want to deny. Using a
standard ACL lets you deny routes based on the destination network, but does not filter based
on the network mask. To also filter based on the destination network network mask, use an
extended ACL.
•
Configure an OSPF distribution list that uses the ACL as input.
NOTE
If you change the ACL after you configure the OSPF distribution list, you must clear the IP route table
to place the changed ACL into effect. To clear the IP route table, enter the clear ip route command
at the Privileged EXEC level of the CLI.
The following sections show how to use the CLI to configure an OSPF distribution list. Separate
examples are provided for standard and extended ACLs.
NOTE
The examples show named ACLs. However, you also can use a numbered ACL as input to the OSPF
distribution list.
Using a standard ACL as input to the distribution list
To use a standard ACL to configure an OSPF distribution list for denying specific routes, enter
commands such as the following.
TurboIron(config)#ip access-list standard no_ip
TurboIron(config-std-nACL)#deny 10.4.0.0 0.255.255.255
TurboIron(config-std-nACL)#permit any any
TurboIron(config-std-nACL)#exit
TurboIron(config)#router ospf
TurboIron(config-ospf-router)#distribute-list no_ip in
The first three commands configure a standard ACL that denies routes to any 10.4.x.x destination
network and allows all other routes for eligibility to be installed in the IP route table. The last three
commands change the CLI to the OSPF configuration level and configure an OSPF distribution list
that uses the ACL as input. The distribution list prevents routes to any 10.4.x.x destination network
from entering the IP route table. The distribution list does not prevent the routes from entering the
OSPF database.
Syntax: [no] distribute-list <ACL-name> | <ACL-id> in [<interface type>] [<interface number>]
Syntax: [no] ip access-list standard <ACL-name> | <ACL-id>
Syntax: deny | permit <source-ip> <wildcard>
The <ACL-name> | <ACL-id> parameter specifies the ACL name or ID.
The in command applies the ACL to incoming route updates.
The <interface number> parameter specifies the interface number on which to apply the ACL.
Enter only one valid interface number. If necessary, use the show interface brief command to
display a list of valid interfaces. If you do not specify an interface, the device applies the ACL to all
incoming route updates.
If you do not specify an interface type and interface number, the device applies the OSPF
distribution list to all incoming route updates.
The deny | permit parameter indicates whether packets that match the policy are dropped or
forwarded.