[10299] in North American Network Operators' Group
Re: Cisco access-lists ???
daemon@ATHENA.MIT.EDU (Randy Bush)
Fri Jun 27 18:14:29 1997
Date: Fri, 27 Jun 97 15:10 PDT
From: randy@psg.com (Randy Bush)
To: "Robert J. Huey" <rhuey@compuserve.net>
Cc: nanog <nanog@merit.edu>
> I'm looking at Interesting Parameters for flap dampening
> and I don't know how to write the ACL. How do you write an
> access list to ignore the network and only look at a range
> of mask bits?
Robert:
The 'discussion' of Jack's report seems to have overwhelmed an actual
operational question. I am shocked and surprised.
In cisco parlance, such an entry might be
access-list 142 deny ip any 255.255.255.128 0.0.0.127
which blocks any prefix longer than a /24.
As to how to express the dampening in the report you mention, could someone
who has it actually installed (come on RV, SD, ...) and debugged please
post? I have exceeded my error quota for the day. Thanks.
randy
