sa-filter access-list
Syntax
sa-filter {in|out} access-list <ACL-RULE>
no sa-filter {in|out} access-list <ACL-RULE>
Description
Associates the given ACL to filter MSDP SA messages on the peer.
The
no
form of this command removes the currently configured ACL entry.
Command context
config-msdp-peer
Parameters
{in|out}
Enables the filter for incoming or outgoing SA messages.
<ACL-RULE>
Specifies the ACL rule name.
Authority
Administrators or local user group members with execution rights for this command.
Usage
By default, the MSDP enabled router forwards all the SA messages, and the peer router processes all the received messages. This command allows the user to configure an ACL on the MSDP peer to filter SA messages. User can prevent the incoming/outgoing SA messages on MSDP router by creating incoming/outgoing filter lists using an ACL.
Example
Filtering incoming SA messages on the MSDP peer for the specified ACL:
switch(config-msdp-peer)# sa-filter in access-list msdp_sa_filter1
Filtering outgoing SA messages on the MSDP peer for the specified ACL:
switch(config-msdp-peer)# sa-filter out access-list msdp_sa_filter2
Removing filter on the MSDP peer for the specified ACL:
switch(config-msdp-peer)# no sa-filter in access-list msdp_sa_filter2