filter-policy import
Use filter-policy import to configure RIP to filter received routes.
Use undo filter-policy import to remove the filtering.
Syntax
filter-policy { ipv4-acl-number | gateway prefix-list-name | prefix-list prefix-list-name [ gateway prefix-list-name ] } import [ interface-type interface-number ]
undo filter-policy import [ interface-type interface-number ]
Default
RIP does not filter received routes.
Views
RIP view
Predefined user roles
network-admin
Parameters
ipv4-acl-number: Specifies an IPv4 ACL by its number in the range of 2000 to 3999 to filter received routes.
prefix-list prefix-list-name: Specifies an IP prefix list by its name, a case-sensitive string of 1 to 63 characters, to filter received routes.
gateway prefix-list-name: Specifies an IP prefix list by its name, a case-sensitive string of 1 to 63 characters, to filter routes based on their next hops.
interface-type interface-number: Specifies an interface by its type and number.
Usage guidelines
You can configure only one filtering policy to filter routes received on an interface. Without any interface specified, the filtering policy applies globally. If you execute this command multiple times, the most recent configuration takes effect.
To remove the filtering policy configured for an interface, use the undo filter-policy import command with the interface specified.
To reference an advanced ACL (with a number from 3000 to 3999) in the command, configure the ACL using one of the following methods:
To deny/permit a route with the specified destination, use the rule [ rule-id ] { deny | permit } ip source sour-addr sour-wildcard command
To deny/permit a route with the specified destination and mask, use the rule [ rule-id ] { deny | permit } ip source sour-addr sour-wildcard destination dest-addr dest-wildcard command.
The source keyword specifies the destination address of a route and the destination keyword specifies the subnet mask of the route. For the mask configuration to take effect, specify a contiguous subnet mask.
Examples
# Use basic ACL 2000 to filter received RIP routes.
<Sysname> system-view [Sysname] acl basic 2000 [Sysname-acl-ipv4-basic-2000] rule deny source 192.168.10.0 0.0.0.255 [Sysname-acl-ipv4-basic-2000] quit [Sysname] rip 1 [Sysname-rip-1] filter-policy 2000 import
# Use IP prefix list abc to filter received RIP routes.
<Sysname> system-view [Sysname] ip prefix-list abc index 10 permit 11.0.0.0 8 [Sysname] rip 1 [Sysname-rip-1] filter-policy prefix-list abc import
# Configure advanced ACL 3000 to permit only route 113.0.0.0/16 to pass. Use ACL 3000 to filter received routes.
<Sysname> system-view [Sysname] acl advanced 3000 [Sysname-acl-ipv4-adv-3000] rule 10 permit ip source 113.0.0.0 0 destination 255.255.0.0 0 [Sysname-acl-ipv4-adv-3000] rule 100 deny ip [Sysname-acl-ipv4-adv-3000] quit [Sysname] rip 1 [Sysname-rip-1] filter-policy 3000 import
Related commands
acl (ACL and QoS Command Reference)
ip prefix-list