您的位置:首页 > 其它

ip prefix-list 属性

2008-12-16 22:56 253 查看
Exercises:

1. Construct a prefix list that permits only the 192.168.1.0/24 network.

ip prefix-list[/b] test1 seq 5 permit 192.168.1.0/24

2. Construct a prefix list that denies network 119.0.0.0, and permits all other prefixes (including all subnets of 119.0.0.0).

ip prefix-list[/b] test2 seq 5 deny 119.0.0.0/8
ip prefix-list[/b] test2 seq 10 permit 0.0.0.0/0 le 32

3. Construct a prefix list that permits only the default route.

ip prefix-list[/b] test3 seq 5 permit 0.0.0.0/0

4. Construct a prefix list the permits everything except the default route.

ip prefix-list[/b] test4 seq 5 deny 0.0.0.0/0
ip prefix-list[/b] test4 seq 10 permit 0.0.0.0/0 le 32

5. Construct a prefix list that permits network 172.16.0.0 and any of its subnets, and denies all other prefixes.

ip prefix-list[/b] test5 seq 5 permit 172.16.0.0/16 le 32

6. Construct a prefix list that permits only the following prefixes:
10.2.8.32/27
10.2.8.32/28
10.2.8.32/29
10.2.8.32/30

ip prefix-list[/b] test6 seq 5 permit 10.2.8.32/27 le 30

7. Construct a prefix list that:

Permits 197.25.94.128/25
Denies 197.25.94.192/26
Permits 197.25.94.224/27
Denies 197.25.94.240/28
Permits 197.25.94.248/29
Denies 197.25.94.252/30
Permits all other prefixes, except for 198.82.0.0/16

ip prefix-list[/b] test7 seq 5 deny 197.25.94.192/26
ip prefix-list[/b] test7 seq 10 deny 197.25.94.240/28
ip prefix-list[/b] test7 seq 15 deny 197.25.94.252/30
ip prefix-list[/b] test7 seq 20 deny 198.82.0.0/16
ip prefix-list[/b] test7 seq 25 permit 0.0.0.0/0 le 32

8. Construct a prefix list that permits any prefix matching the first 20 bits of 175.29.64.0 which has a mask of at least /26 but not exceeding /29, and denies all other prefixes.

ip prefix-list[/b] test8 seq 5 permit 175.29.64.0/20 ge 26 le 29

9. Construct a prefix list that denies any prefix matching the first 19 bits of 15.26.96.0 with any mask up to and including /32, and permits any other prefix.

ip prefix-list[/b] test9 seq 5 deny 15.26.96.0/19 le 32
ip prefix-list[/b] test9 seq 10 permit 0.0.0.0/0 le 32

10. Construct a prefix list that denies the RFC 1918 private networks and any of their subnets, and permits everything else.

ip prefix-list[/b] test10 seq 5 deny 10.0.0.0/8 le 32
ip prefix-list[/b] test10 seq 10 deny 172.16.0.0/12 le 32
ip prefix-list[/b] test10 seq 15 deny 192.168.0.0/16 le 32
ip prefix-list[/b] test10 seq 20 permit 0.0.0.0/0 le 32

11. Construct a prefix list that permits any subnet of network 15.0.0.0 (but not the network), and denies everything else. Your router lies within AS 65011. Place the prefix list in service in the inbound direction with BGP neighbor 1.2.3.4.

ip prefix-list[/b] test11 seq 5 permit 15.0.0.0/8 ge 9

To place it in service:
router bgp 65011
neighbor 1.2.3.4 prefix-list[/b] test11 in

12. Construct a prefix list that denies 162.56.0.0/16 and all of its subnets (with the exception of 162.56.209.208/29, which is permitted), and permits all other prefixes. Your router lies within AS 65012. Place the prefix list in service in the outbound direction with its BGP neighbor having address 5.6.7.8.

ip prefix-list[/b] test12 seq 5 permit 162.56.209.208/29
ip prefix-list[/b] test12 seq 10 deny 162.56.0.0/16 le 32
ip prefix-list[/b] test12 seq 15 permit 0.0.0.0/0 le 32

To place it in service:
router bgp 65012
neighbor 5.6.7.8 prefix-list[/b] test12 out

13. Construct a prefix list that permits the CIDR block containing the thirty-two class C networks beginning with 200.202.160.0/24, and denies everything else. Your router is within AS 65013. Place the prefix list in service in the inbound direction with BGP peer-group "Lucky_13".

ip prefix-list[/b] test13 seq 5 permit 200.202.160.0/19

To place it in service:
router bgp 65013
neighbor Lucky_13 prefix-list[/b] test13 in

14. Construct a prefix list that denies any prefix for which the most-significant four bits are "0110", and permits everything else.

ip prefix-list[/b] test14 seq 5 deny 96.0.0.0/4 le 32
ip prefix-list[/b] test14 seq 10 permit 0.0.0.0/0 le 32

15. Construct a prefix list that permits the host address of "CatSpace", and denies everything else.

ip prefix-list[/b] test15 seq 5 permit 64.82.100.67/32

16. Construct a prefix list that permits only classful networks, and denies everything else.

ip prefix-list[/b] test16 seq 5 permit 0.0.0.0/1 ge 8 le 32
ip prefix-list[/b] test16 seq 10 permit 128.0.0.0/2 ge 16 le 32
ip prefix-list[/b] test16 seq 15 permit 192.0.0.0/3 ge 24 le 32

17. Construct a prefix list that denies only supernets, and permits everything else.

ip prefix-list[/b] test17 seq 5 deny 0.0.0.0/1 le 7
ip prefix-list[/b] test17 seq 10 deny 128.0.0.0/2 le 15
ip prefix-list[/b] test17 seq 15 deny 192.0.0.0/3 le 23
ip prefix-list[/b] test17 seq 20 permit 0.0.0.0/0 le 32

18. Construct a prefix list that permits only subnets, and denies everything else.

ip prefix-list[/b] test18 seq 5 permit 0.0.0.0/1 ge 9
ip prefix-list[/b] test18 seq 10 permit 128.0.0.0/2 ge 17
ip prefix-list[/b] test18 seq 15 permit 192.0.0.0/3 ge 25

19. Construct a prefix list that permits only CIDR blocks encompassing at least 32 class-C equivalents.

ip prefix-list[/b] test19 seq 5 deny 0.0.0.0/0
ip prefix-list[/b] test19 seq 10 permit 0.0.0.0/0 le 19

20. Construct a prefix list that permits only the RFC 1918 private networks and their subnets, and configure RIP to use this prefix list for outbound routing advertisements.

ip prefix-list[/b] test20 seq 5 permit 10.0.0.0/8 le 32
ip prefix-list[/b] test20 seq 10 permit 172.16.0.0/12 le 32
ip prefix-list[/b] test20 seq 15 permit 192.168.0.0/16 le 32

To place it in effect for outbound RIP updates:
router rip
distribute-list prefix test20 out本文出自 51CTO.COM技术博客
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 点击这里给我发消息
标签: