ip prefix-list
provides the most powerful prefix based
filtering mechanism. In addition to access-list
functionality,
ip prefix-list
has prefix length range specification and
sequential number specification. You can add or delete prefix based
filters to arbitrary points of prefix-list using sequential number specification.
If no ip prefix-list is specified, it acts as permit. If ip prefix-list
is defined, and no match is found, default deny is applied.
ip prefix-list name (permit|deny) prefix [le len] [ge len] | Command |
ip prefix-list name seq number (permit|deny) prefix [le len] [ge len] | Command |
You can create
|
Less than or equal to prefix numbers and greater than or equal to prefix numbers can be used together. The order of the le and ge commands does not matter.
If a prefix list with a different sequential number but with the exact same rules as a previous list is created, an error will result. However, in the case that the sequential number and the rules are exactly similar, no error will result.
If a list with the same sequential number as a previous list is created, the new list will overwrite the old list.
Matching of IP Prefix is performed from the smaller sequential number to the larger. The matching will stop once any rule has been applied.
In the case of no le or ge command,
Version 0.85: the matching rule will apply to all prefix lengths that matched the prefix list.
Version 0.86 or later: In the case of no le or ge command, the prefix length must match exactly the length specified in the prefix list.
no ip prefix-list name | Command |