Lompat ke konten Lompat ke sidebar Lompat ke footer
Beranda / Lab 3. EIGRP - Filtering - Prefix List - IN

Lab 3. EIGRP - Filtering - Prefix List - IN

Oleh Hasugian Posting Komentar
Malam al reader, kali ini saya akan menulis  Filtering - Prefix List EIGRP. Tujuannya adalah kita tidak mengijinkan beberapa network dengan subnetmask tertentu masuk ke routing table pada router tetangga karna bebereapa alasan.  Pada pemabahasan ini akan dibahas Filtering Prefix List - IN dan Filtering Prefix List - OUT.
Konfigurasi router R1

R1(config)#int fa0/0
R1(config-if)#ip add
R1(config-if)#ip address 12.12.12.1 255.255.255.0
R1(config-if)#no shu
R1(config-if)#exi
R1(config)#
R1(config)#router ei 1
R1(config-router)#net 0.0.0.0
R1(config-router)#exi
R1(config)#

Konfigurasi router R2

R2(config)#int fa0/0
R2(config-if)#ip add
R2(config-if)#ip address 12.12.12.2 255.255.255.0
R2(config-if)#no shu
R2(config-if)#exi
R2(config)#
R2(config)#int fa0/1
R2(config-if)#ip add
R2(config-if)#ip address 23.23.23.2 255.255.255.0
R2(config-if)#no shu
R2(config-if)#exi
R2(config)#
R2(config)#
R2(config)#router ei 1
R2(config-router)#net 0.0.0.0
R2(config-router)#exi
R2(config)#

Buat beberapa ip loopback dengan netmask yang bervariatif

Konfigurasi router R3

R3(config)#int fa0/1
R3(config-if)#ip add
R3(config-if)#ip address 23.23.23.3 255.255.255.0
R3(config-if)#no shu
R3(config-if)#exi
R3(config)#
R3(config)#int lo0
R3(config-if)#ip add 3.3.3.3 255.255.255.255
R3(config-if)#exi
R3(config)#
R3(config)#int lo1
R3(config-if)#ip add 3.3.3.17 255.255.255.240
R3(config-if)#exi
R3(config)#
R3(config)#int lo2
R3(config-if)#ip add 3.3.3.33 255.255.255.248
R3(config-if)#exi
R3(config)#
R3(config)#int lo3
R3(config-if)#ip add 3.3.3.100 255.255.255.224
R3(config-if)#exi
R3(config)#
R3(config)#
R3(config)#int lo4
R3(config-if)#ip add 3.3.3.150 255.255.255.252
R3(config-if)#exi
R3(config)#
R3(config)#int lo5
R3(config-if)#ip add 3.3.3.200 255.255.255.240
R3(config-if)#exi
R3(config)#
R3(config)#router eigrp 1
R3(config-router)#net 0.0.0.0
R3(config-router)#no au


R1#show ip route
     3.0.0.0/8 is variably subnetted, 6 subnets, 5 masks
D       3.3.3.3/32 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D       3.3.3.16/28 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D       3.3.3.32/29 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D       3.3.3.96/27 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D       3.3.3.148/30 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D       3.3.3.192/28 [90/435200] via 12.12.12.2, 00:00:09, FastEthernet0/0
D    23.0.0.0/8 [90/307200] via 12.12.12.2, 00:07:22, FastEthernet0/0
     12.0.0.0/24 is subnetted, 1 subnets                         
C       12.12.12.0 is directly connected, FastEthernet0/0
R1#

R2(config)#do sh ip ro
     3.0.0.0/8 is variably subnetted, 6 subnets, 5 masks
D       3.3.3.3/32 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
D       3.3.3.16/28 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
D       3.3.3.32/29 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
D       3.3.3.96/27 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
D       3.3.3.148/30 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
D       3.3.3.192/28 [90/409600] via 23.23.23.3, 00:03:07, FastEthernet0/1
     23.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C       23.23.23.0/24 is directly connected, FastEthernet0/1
D       23.0.0.0/8 is a summary, 00:10:25, Null0
     12.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C       12.12.12.0/24 is directly connected, FastEthernet0/0
D       12.0.0.0/8 is a summary, 00:10:25, Null0
R2(config)#

Lalu lakukan konfigurasi prefix-list filtering di R2

R2(config)#ip prefix-list EIGRP_IN seq 10 deny 3.3.3.0/24 le 28
R2(config)#ip prefix-list EIGRP_IN seq 20 permit 0.0.0.0/0 le 32

R2(config)#router eigrp 1
R2(config-router)#distribute-list prefix EIGRP_in

lakuikan verfikasi, seharusnya, semua network 3.3.3.x yang memiliki prefix /24 sampai /28 akan di deny. Artinya jika diping ke ip 3.3.3.100 hasilnya akan tidak ada (no repson)

R2(config-router)#do sh ip rou
     3.0.0.0/8 is variably subnetted, 3 subnets, 3 masks
D       3.3.3.3/32 [90/409600] via 23.23.23.3, 00:10:17, FastEthernet0/1
D       3.3.3.32/29 [90/409600] via 23.23.23.3, 00:10:17, FastEthernet0/1
D       3.3.3.148/30 [90/409600] via 23.23.23.3, 00:10:17, FastEthernet0/1
     23.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C       23.23.23.0/24 is directly connected, FastEthernet0/1
D       23.0.0.0/8 is a summary, 00:17:33, Null0
     12.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C       12.12.12.0/24 is directly connected, FastEthernet0/0
D       12.0.0.0/8 is a summary, 00:17:35, Null0
R2(config-router)#

Jika lakukan verifikasi, maka hasilnya juga sama dengan R2.

R1#show ip route
     3.0.0.0/8 is variably subnetted, 3 subnets, 3 masks
D       3.3.3.3/32 [90/435200] via 12.12.12.2, 00:13:18, FastEthernet0/0
D       3.3.3.32/29 [90/435200] via 12.12.12.2, 00:13:18, FastEthernet0/0
D       3.3.3.148/30 [90/435200] via 12.12.12.2, 00:13:18, FastEthernet0/0
D    23.0.0.0/8 [90/307200] via 12.12.12.2, 00:20:29, FastEthernet0/0
     12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, FastEthernet0/0
R1#

Sampapai disni nateri Filtering Prefix List IN sudah selesai & sukses.

Part-2
Sekarang bagaimana jika fiteringnya dilakukan bukan di R2, tp di R3. Itu sangat bisa iu namanya Filtering Prefix List out. 

Jika maiu mempraktekkan di LAB ini, tinggal hapus terlebih dahulu konfigurasi ip prefix-list dan distribute-list di R2. 

Setelah itu lakukan perintah ini di R3

R3(config)#ip prefix-list EIGRP_IN seq 10 deny 3.3.3.0/24 ge 28 le 30

R3(config)#ip prefix-list EIGRP_IN seq 20 permit  0.0.0.0/0 le 32
R3(config)#

R3(config)#router eigrp 1
R3(config-router)#distribute-list prefix EIGRP_IN out

lakukan verifikasi di R1 dan R2, seharusnya di R2 dan R1 network yang memiliki 3.3.3.x subnetmask /24 - /28 akan di deny.
R1#show ip route
     3.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
D       3.3.3.3/32 [90/435200] via 12.12.12.2, 01:14:09, FastEthernet0/0
D       3.3.3.96/27 [90/435200] via 12.12.12.2, 00:00:38, FastEthernet0/0
     23.0.0.0/24 is subnetted, 1 subnets
D       23.23.23.0 [90/307200] via 12.12.12.2, 00:29:07, FastEthernet0/0
     12.0.0.0/24 is subnetted, 1 subnets
C       12.12.12.0 is directly connected, FastEthernet0/0

R1#



Posting Komentar untuk "Lab 3. EIGRP - Filtering - Prefix List - IN"

Posting Komentar