------- I have a customer that has the config below. I would never write it like this, and use a standard ACL or distribute list instead. but to my surprise, this is allowing every static route to go be advertised.. I would think that "permit ip host 0.0.0.0 host 0.0.0.0" would get no matches and that the explicit deny would deny everything. But NOOO... the acl is matching everything.
Can someone explain this?
Cisco# router bgp 65001 redistribute static route-map redist-stat
route-map redist-stat permit 10 match ip address ALLOW-Default
ip access-list extended ALLOW-Default permit ip host 0.0.0.0 host 0.0.0.0
Thorofare#sh ip route 167.219.88.146 Routing entry for 167.219.88.146/32 Known via "static", distance 1, metric 0 Redistributing via bgp 65001 Advertised by bgp 65001 route-map redist-stat snip
Thorofare#sh access-l ALLOW-Default Extended IP access list ALLOW-Default 10 permit ip host 0.0.0.0 host 0.0.0.0 (1492680 matches)
Thanks, Crzzy1
-------