ACLs

ACLs

Path filters

Prefix filters

Community lists

Route maps

access-list 1 deny x.x.x.x 0.0.0.255

ip as-path access-list <aslist1> ...

... permit <reg-ex>

... deny <reg-ex>

... permit <reg-ex>

ip as-path access-list <aslist2> ...

... permit <reg-ex>

... deny <reg-ex>

ip prefix-list <plist1> ...

... permit x.x.x.x/24

... deny x.x.x.x/24

ip prefix-list <plist2> ...

... permit x.x.x.x/24

... deny x.x.x.x/24

ip community-list <clist1> ...

... deny internet

... permit noexport

Entities in the column above are the possible lists that can be a part of per-peer BGP filtering. These lists can be applied directly to a BGP peer (except for community lists) or added to a route map (middle column), which is then added to a BGP peer (last column).

Ways to use lists in IP route filtering for BGP, with generic command examples

route-map <map1> permit 1 match ip address 1

route-map <map2> deny 1 match as-path <alist2>

route-map <map3> permit 1

match ip address prefix-list <plist2>

ip route-map <map4> permit 1 match community <clist1> set comm-list <clist1> delete

bgp neighbor x.x.x.x distribute-list 1 in

bgp neighbor x.x.x.x filter-list <alist1> in

bgp neighbor x.x.x.x filter-list <alist2> out

bgp neighbor x.x.x.x prefix-list <plist1> in

bgp neighbor x.x.x.x prefix-list <plist2> out

bgp neighbor x.x.x.x route-map <map1> out

bgp neighbor x.x.x.x route-map <map2> in

bgp neighbor x.x.x.x route-map <map3> in

bgp neighbor x.x.x.x route-map <map4> out

Page 45
Image 45
Allied Telesis X8100, x908 manual ACLs Path filters Prefix filters, Route maps

X8100, x908 specifications

The Allied Telesis x908 and the SwitchBlade x900 series of network switches are cutting-edge solutions designed to address the demands of modern networking environments. These switches are known for their high performance, reliability, and robust feature sets, making them ideal for enterprise and service provider networks.

The Allied Telesis x908 series consists of modular and chassis-based systems that can accommodate a variety of network configurations. One of the main features of the x908 series is its ability to offer high scalability with support for a large number of ports. This makes it suitable for data centers and large enterprise networks where space and bandwidth optimization are critical.

In addition to scalability, the x908 series supports advanced Layer 2 and Layer 3 switching capabilities. This allows for efficient traffic management and routing, ensuring that data is delivered swiftly and reliably. The x908 also incorporates intelligent features such as Quality of Service (QoS), which prioritizes critical network traffic, ensuring that time-sensitive data—like voice and video—maintains its quality during transmission.

The SwitchBlade x900 series takes this functionality further with its innovative modular architecture. This allows organizations to configure their networks to meet specific needs by choosing from a variety of interface cards and service modules. The SwitchBlade x900 also supports advanced security features such as Access Control Lists (ACLs) and VLAN segmentation, which provide enhanced protection against unauthorized access and network threats.

Another hallmark of the x908 and SwitchBlade series is their support for high-speed Ethernet technologies, including 10G and 40G Ethernet. This enables organizations to keep pace with the increasing bandwidth demands of applications and services, particularly in cloud computing and data-intensive workloads.

Both the x908 and the SwitchBlade x900 series are designed with energy efficiency in mind, featuring power-saving technologies that reduce overall operational costs. Coupled with Allied Telesis' management tools, which provide detailed analytics and monitoring, network administrators can optimize performance and energy consumption simultaneously.

In summary, the Allied Telesis x908 and SwitchBlade x900 series offer a comprehensive suite of features, high performance, scalability, and advanced networking technologies. They represent a strategic investment for organizations looking to build resilient, efficient, and future-proof network infrastructures.