06-03-2010, 11:14 PM
You know what. I figured it out. When you use route-maps in route redistribution they work differently then they do for policy routing. The answer is definitely correct.
Here is the configuration
access-list 15 deny 10.1.1.0 0.0.0.63
access-list 15 permit any
route-map redis-rip deny 10
match ip address 15
route-map redis-rip permit 20
router ospf 100
redistribute rip route-map redis-rip subnets
FYI on route maps, a route map must have at least one match clause or one set clause. If you have no match clauses, all routes match the route map, and the set conditions apply to all routes. If you have no set clauses, no action is taken other than that specified by the permit or deny keyword.
What this seems to be saying is:
Deny any routes from the 10.x.x.x network from being denied redistribution and then permit all other routes to be denied redistribution.
So a deny (ACL) of a denial (Route-map) is essentially a permit
A Permit (ACL) to be denied (Route-map) is a denial.
The same could be accomplished this way
access-list 15 permit 10.1.1.0 0.0.0.63
route-map redis-rip permit 10
match ip address 15
Now there is no match statement for any other routes other than the 10.x.x.x routes to be permitted redistribution thus other routes will not be permitted redistribution. Is this right?
Here is the configuration
access-list 15 deny 10.1.1.0 0.0.0.63
access-list 15 permit any
route-map redis-rip deny 10
match ip address 15
route-map redis-rip permit 20
router ospf 100
redistribute rip route-map redis-rip subnets
FYI on route maps, a route map must have at least one match clause or one set clause. If you have no match clauses, all routes match the route map, and the set conditions apply to all routes. If you have no set clauses, no action is taken other than that specified by the permit or deny keyword.
What this seems to be saying is:
Deny any routes from the 10.x.x.x network from being denied redistribution and then permit all other routes to be denied redistribution.
So a deny (ACL) of a denial (Route-map) is essentially a permit
A Permit (ACL) to be denied (Route-map) is a denial.
The same could be accomplished this way
access-list 15 permit 10.1.1.0 0.0.0.63
route-map redis-rip permit 10
match ip address 15
Now there is no match statement for any other routes other than the 10.x.x.x routes to be permitted redistribution thus other routes will not be permitted redistribution. Is this right?