Networking | Linux | FOSS | Note-Keeping |


Friday, August 18, 2017

Even/Odd RIP Route Filtering - Wildcard Mask Explanation!

When we assign an IP address to an interface, the operating system performs a process called ANDING. Let's say the IP address is with a Subnet Mask of, the operating system will perform ANDING, which is nothing but a multiplication. Basically, 1 multiply by 1 is 1, 1 multiplied by 0 is 0, and 0 multiply by 0 is 0. You may think this is too easy, where is he going with this. Let’s go through the process and you will see:

00000010.00000010.00000010.00000010     à The Network
11111111.11111111.11111111.00000000     à The Subnet Mask

00000010.00000010.00000010.00000000     à The Result


As we can see the result of the ANDING is, and this is the network, So, when we assign an IP address and a Subnet Mask, the operating system performs ANDING to get the network address.

In IOS, we can use Subnet Mask and/or an Inverse Mask. Why we use Inverse Mask? Because we can have discontinuous ONEs, whereas, in Subnet Mask we can NOT.

To convert an inverse mask to a regular mask, we can subtract the inverse mask from

Now, let’s go over the Access-List With an inverse mask of
Let’s do ANDING, but before we do ANDING we have to convert the inverse mask to regular mask, let’s do that: – =

Now, let’s do ANDING:


So, the result of ANDING is, and if the result is based on the ACL it is denied.
Now, let’s see if is allowed:


WOW, you can see the result of the ANDING is the same, we can see that if is used it will still AND to which is ODD in the third octet. So, all ODD numbered third octet will AND to and it is denied. 

NOW, is is looked at, it will AND to, and based on the ACL it will be permitted, so as a result all the EVEN numbered third octet subnets will be allowed, and all the ODD numbered third octet subnets will be denied. 

CCIE by Mr. Narbik Kocharians © 2014
CCIE R&S Foundation v5.0 Workbook Vol-1 (RIPv2 Labs)


Post a Comment


Contact Form


Email *

Message *

Total Pageviews

Search This Blog