User guide
E
XTREME
W
ARE
S
OFTWARE
U
SER
G
UIDE
16-19
U
SING
R
OUTING
A
CCESS
P
OLICIES
R
OUTING
A
CCESS
P
OLICIES
FOR
RIP
If you are using the RIP protocol, the switch can be configured to use an access profile
to determine any of the following:
• Trusted Neighbor — Use an access profile to determine trusted RIP router neighbors
for the VLAN on the switch running RIP. To configure a trusted neighbor policy, use
the following command:
config rip vlan [<name> | all] trusted-gateway [<access_profile> |
none]
• Import Filter — Use an access profile to determine which RIP routes are accepted as
valid routes. This policy can be combined with the trusted neighbor policy to accept
selected routes only from a set of trusted neighbors. To configure an import filter
policy, use the following command:
config rip vlan [<name> | all] import-filter [<access_profile> |
none]
• Export Filter — Use an access profile to determine which RIP routes are advertised
into a particular VLAN, using the following command:
config rip vlan [<name> | all] export-filter [<access_profile> |
none]
EXAMPLES
In the example shown in Figure 16-7, a switch is configured with two VLANs, Engsvrs
and Backbone. The RIP protocol is used to communicate with other routers on the
network. The administrator wants to allow all internal access to the VLANs on the
switch, but no access to the router that connects to the Internet. The remote router that
connects to the Internet has a local interface connected to the corporate backbone. The
IP address of the local interface connected to the corporate backbone is 10.0.0.10/24.