Does the use of extended IP access control lists (ACL) filter regular routing updates (such as OSPF)? Do I need to explicitly permit the multicast IPs used by routing protocols (such as 224.0.0.5 그리고 224.0.0.6, in the case of OSPF) for updates to ensure the proper working of routing protocols?

Any IP ACL on an interface is applied to any IP traffic on that interface. All IP routing updates packets are handled as regular IP packets at the interface level, 그리고, thus, they are matched with the ACL defined at the interface using the access-listcommand. To ensure that the routing updates are not denied by ACLs, permit them using the following statements.

To permit RIP use:

액세스 목록 102 permit udp any any eq rip

To permit IGRP use:

액세스 목록 102 permit igrp any any

To permit EIGRP use:

액세스 목록 102 permit eigrp any any

To permit OSPF use:

액세스 목록 102 permit ospf any any

To permit Border Gateway Protocol (BGP) 사용:

액세스 목록 102 permit tcp any any eq 179 액세스 목록 102 permit tcp any eq 179 어느

For more information on ACLs, refer to Configuring IP Access Listsand Configuring Commonly Used IP ACLs.