sa-filter access-list

Syntax

sa-filter {in|out} access-list <ACL-RULE>

no sa-filter {in|out} access-list <ACL-RULE>

Description

Associates the given ACL to filter MSDP SA messages on the peer.

The no form of this command removes the currently configured ACL entry.

Command context

config-msdp-peer

Parameters

{in|out}

Enables the filter for incoming or outgoing SA messages.

<ACL-RULE>

Specifies the ACL rule name.

Authority

Administrators or local user group members with execution rights for this command.

Usage

By default, the MSDP enabled router forwards all the SA messages, and the peer router processes all the received messages. This command allows the user to configure an ACL on the MSDP peer to filter SA messages. User can prevent the incoming/outgoing SA messages on MSDP router by creating incoming/outgoing filter lists using an ACL.

Example

Filtering incoming SA messages on the MSDP peer for the specified ACL:

switch(config-msdp-peer)# sa-filter in access-list msdp_sa_filter1

Filtering outgoing SA messages on the MSDP peer for the specified ACL:

switch(config-msdp-peer)# sa-filter out access-list msdp_sa_filter2

Removing filter on the MSDP peer for the specified ACL:

switch(config-msdp-peer)# no sa-filter in access-list msdp_sa_filter2