Got it

OSPF filter route

Latest reply: Oct 17, 2019 02:42:05 303 1 2 1

Hi all,

This post provides an example to describe how to use the ospf filter-lsa-out comand to filter OSPF routes.

Requirement Description

There are three devices A, B, C, B establishes OSPF peer with A and C respectively, which belongs to the same process. OSPF of A imports direct routes. Now it is required to make a routing policy on B so that C cannot receive a loopback address of A.



1. The device A establishes OSPF VPN peer with device B through the vlanif211, it has three loopback addresses and the direct routes are imported to the OSPF process.


2. These three routes can be seen in the VPN routing table on device B.


3. The device B and device establish OSPF VPN peer through vlanif1211. The three routes can also be seen on device C.


4. Configure ospf filter-lsa-out on vlanif1211 of the device B to filter LSAs.



5. After the configuration, you can see that there are only two routes on the C.



1. After the deny rule is configured for the ACL, a permit rule must be added.

2. The filter-policy export command cannot be used here. The application scenario of this command is as follows: After OSPF imports external routes using the import-route command, you can use the filter-policy export command to filter the imported routes to be advertised. Only the external routes that pass the filtering can be converted into AS-external LSAs and advertised.

3. You can use the filter-policy import command in the OSPF process of the C device so that the routing table of the C device does not generate the route, however, if this is done, LSA will still be transmitted.

4. The OSPF filter-lsa-out command is used to filter the outgoing LSAs on an OSPF interface. The command can be configured only in the Layer 3 interface view.

  • x
  • convention:

Created Oct 17, 2019 02:42:05 Helpful(0) Helpful(0)

Very useful to share, thanks
View more
  • x
  • convention:


You need to log in to comment to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."

My Followers

Login and enjoy all the member benefits


Huawei Enterprise Support Community
Huawei Enterprise Support Community
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Please bind your phone number to obtain invitation bonus.