๐ RIP Route Filtering Using Distribute-Lists (Complete Guide)
Routing Information Protocol (RIP) is widely used due to its simplicity. However, controlling which routes are learned and advertised is critical. This is where distribute-lists come into play.
๐ Table of Contents
- Inbound Filtering
- Outbound Filtering
- Routing Logic (Simple Math)
- Comparison
- CLI Outputs
- Best Practices
- Related Articles
⬅️ Filtering Inbound RIP Routes
Inbound filtering controls what routes your router accepts.
Configuration
Router2#configure terminal
Router2(config)#access-list 10 deny 192.168.20.0
Router2(config)#access-list 10 permit any
Router2(config)#router rip
Router2(config-router)#distribute-list 10 in Serial 0.1
Router2(config-router)#network 172.25.0.0
Router2(config-router)#network 192.168.30.0
Router2(config-router)#end
Explanation
- ACL blocks 192.168.20.0
- Other routes allowed
- Filtering applied only on Serial 0.1
➡️ Filtering Outbound RIP Routes
Outbound filtering controls what routes your router advertises.
Configuration
Router1#configure terminal
Router1(config)#access-list 20 permit 0.0.0.0
Router1(config)#access-list 20 deny any
Router1(config)#router rip
Router1(config-router)#distribute-list 20 out Serial0/0.2
Router1(config-router)#network 172.25.0.0
Router1(config-router)#end
Explanation
- Only default route allowed
- Everything else blocked
- Controls advertisement to neighbors
๐ Routing Logic Explained (Easy Math)
RIP selects routes based on hop count:
\[ Metric = Number\ of\ routers\ crossed \]
Example:
- Path A = 2 hops
- Path B = 5 hops
๐ RIP selects Path A
Filtering Logic:
\[ Allowed\ Routes = Total\ Routes - Denied\ Routes \]
Simple idea: remove unwanted routes → cleaner routing table.
⚖️ Inbound vs Outbound Filtering
| Feature | Inbound | Outbound |
|---|---|---|
| Controls | Incoming routes | Outgoing routes |
| Use Case | Block unwanted routes | Limit advertisements |
| Impact | Routing table | Neighbor routers |
๐ฅ️ CLI Output Examples
Inbound Filtering Result
R 172.25.0.0/16 [120/1] (192.168.20.0 NOT PRESENT)
Outbound Filtering Result
Sending updates: 0.0.0.0/0 only
⚙️ Platform Differences
- Older IOS → global filtering behavior
- Modern IOS → interface-specific filtering
- Newer systems → better validation & performance
✅ Best Practices
- Use precise ACLs
- Always test before deployment
- Monitor using:
show ip rip database - Avoid overly broad rules
๐ก Key Takeaways
- Distribute-lists control routing information flow
- Inbound = control what you learn
- Outbound = control what you advertise
- Essential for network stability and security
๐ฏ Conclusion
Distribute-lists provide powerful control over RIP routing behavior. By carefully applying inbound and outbound filters, you can prevent unnecessary routes, improve performance, and maintain a stable network.
No comments:
Post a Comment