anda membaca...
CCNP, Route

EIGRP Filtering–Distribute List

Perangkat yang diperlukan:

Laptop/PC dengan GNS3 yang sudah terinstal.

image

Tugas:

Distribute-list (bukan distribution-list) digunakan jika kita ingin menyembunyikan suatu network agar tidak nampak di dalam routing table dari network lain. Dalam contoh lab ini, kita ingin menyembunyikan network 2.2.2.2 dari routing table R1. Topologi masih sama dengan Lab EIGRP Konfig Dasar.

Konfigurasi:

Konfigurasikan IP address di semua router dan jangan lupa di no shutdown. Berikan routing EIGRP di tiap router dengan AS yang sama.

Konfigurasikan access list di R1 untuk menolak packet dari loopback 0 router R2 dengan direction IN

R1

R1#conf t
R1(config)#access-list 1 deny 2.2.2.2
R1(config)#access-list 1 permit any
R1(config)#router ei 10
R1(config-router)#distribute-list 1 in s0/0

Cek di routing table R1, pastikan IP 2.2.2.2 sudah tidak terdapat di dalam routing table-nya

R1#sh ip rou
Codes: C – connected, S – static, R – RIP, M – mobile, B – BGP
D – EIGRP, EX – EIGRP external, O – OSPF, IA – OSPF inter area
N1 – OSPF NSSA external type 1, N2 – OSPF NSSA external type 2
E1 – OSPF external type 1, E2 – OSPF external type 2
i – IS-IS, su – IS-IS summary, L1 – IS-IS level-1, L2 – IS-IS level-2
ia – IS-IS inter area, * – candidate default, U – per-user static route
o – ODR, P – periodic downloaded static route

Gateway of last resort is not set

     1.0.0.0/32 is subnetted, 1 subnets
C       1.1.1.1 is directly connected, Loopback0
3.0.0.0/32 is subnetted, 1 subnets
D       3.3.3.3 [90/2300416] via 12.12.12.2, 00:02:12, Serial0/0
23.0.0.0/24 is subnetted, 1 subnets
D       23.23.23.0 [90/2172416] via 12.12.12.2, 00:02:13, Serial0/0
12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, Serial0/0

Jika ingin dikonfigurasikan di R2, maka direction dari access list harus OUT, karena loopback yang ingin diblok ada di R2.

Hapus dulu konfigurasi access list di R1

R1(config)#router ei 10
R1(config-router)#no distribute-list 1 in s0/0
R1(config-router)#^Z

Cek dulu routing table-nya, apakah 2.2.2.2 sudah masuk dalam routing table R1

R1#sh ip rou
Codes: C – connected, S – static, R – RIP, M – mobile, B – BGP
D – EIGRP, EX – EIGRP external, O – OSPF, IA – OSPF inter area
N1 – OSPF NSSA external type 1, N2 – OSPF NSSA external type 2
E1 – OSPF external type 1, E2 – OSPF external type 2
i – IS-IS, su – IS-IS summary, L1 – IS-IS level-1, L2 – IS-IS level-2
ia – IS-IS inter area, * – candidate default, U – per-user static route
o – ODR, P – periodic downloaded static route

Gateway of last resort is not set

1.0.0.0/32 is subnetted, 1 subnets
C       1.1.1.1 is directly connected, Loopback0
2.0.0.0/32 is subnetted, 1 subnets
D       2.2.2.2 [90/2297856] via 12.12.12.2, 00:01:41, Serial0/0
3.0.0.0/32 is subnetted, 1 subnets
D       3.3.3.3 [90/2300416] via 12.12.12.2, 00:01:41, Serial0/0
23.0.0.0/24 is subnetted, 1 subnets
D       23.23.23.0 [90/2172416] via 12.12.12.2, 00:01:41, Serial0/0
12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, Serial0/0

Kemudian dikonfigurasikan access listnya di R2

R2#conf t
R2(config)#access-list 1 deny 2.2.2.2
R2(config)#access-list 1 permit any
R2(config)#router ei 10
R2(config-router)#distribute-list 1 out s0/0
R2(config-router)#^Z

Cek lagi routing table di R1

R1#sh ip route
Codes: C – connected, S – static, R – RIP, M – mobile, B – BGP
D – EIGRP, EX – EIGRP external, O – OSPF, IA – OSPF inter area
N1 – OSPF NSSA external type 1, N2 – OSPF NSSA external type 2
E1 – OSPF external type 1, E2 – OSPF external type 2
i – IS-IS, su – IS-IS summary, L1 – IS-IS level-1, L2 – IS-IS level-2
ia – IS-IS inter area, * – candidate default, U – per-user static route
o – ODR, P – periodic downloaded static route

Gateway of last resort is not set

1.0.0.0/32 is subnetted, 1 subnets
C       1.1.1.1 is directly connected, Loopback0
3.0.0.0/32 is subnetted, 1 subnets
D       3.3.3.3 [90/2300416] via 12.12.12.2, 00:00:46, Serial0/0
23.0.0.0/24 is subnetted, 1 subnets
D       23.23.23.0 [90/2172416] via 12.12.12.2, 00:00:46, Serial0/0
12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, Serial0/0

Terlihat bahwa IP 2.2.2.2 sudah tidak ada lagi di routing tablenya.

Ilham P

About ilhampst

Telecommunication Network Engineer

Discussion

No comments yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Kalender

July 2012
M T W T F S S
    Sep »
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

Kategori

%d bloggers like this: