This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
- Community
- RUCKUS Technologies
- RUCKUS Lennar Support
- Community Services
- RTF
- RTF Community
- Australia and New Zealand – English
- Brazil – Português
- China – 简体中文
- France – Français
- Germany – Deutsch
- Hong Kong – 繁體中文
- India – English
- Indonesia – bahasa Indonesia
- Italy – Italiano
- Japan – 日本語
- Korea – 한국어
- Latin America – Español (Latinoamérica)
- Middle East & Africa – English
- Netherlands – Nederlands
- Nordics – English
- North America – English
- Poland – polski
- Russia – Русский
- Singapore, Malaysia, and Philippines – English
- Spain – Español
- Taiwan – 繁體中文
- Thailand – ไทย
- Turkey – Türkçe
- United Kingdom – English
- EOL Products
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- RUCKUS Forums
- RUCKUS Technologies
- ICX Switches
- BGP Prevent AS from being a Transit AS
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
BGP Prevent AS from being a Transit AS
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-04-2020 05:53 AM
I have a BGP setup that looks like this, and although it is working great for two WAN circuits (for redundancy), I would rather advertise only local routes though.. Currently, I am doing an AS Pre-Pend to load-balance the incoming traffic a little, and it is working great in that if I go to another site and do a traceroute, I can confirm the subnets come in from the proper eBGP neighbors. In fact, if I do it from a BGP enabled router, it even shows the AS PATH in the traceroute...
This works perfectly fine thus far but no filtering to only advertise local routes out:
router bgp
local-as
neighbor remote-as
neighbor remote-as
address-family ipv4 unicast
redistribute connected
neighbor route-map out PreferBGP-A
neighbor route-map out PreferBGP-B
exit-address-family
address-family ipv6 unicast
exit-address-family
!
route-map PreferBGP-A permit 10
match ip address prefix-list Deliver-BGP-B
set as-path prepend
route-map PreferBGP-A permit 20
match ip address prefix-list permitAny
!
route-map PreferBGP-B permit 10
match ip address prefix-list Deliver-BGP-A
set as-path prepend
route-map PreferBGP-B permit 20
match ip address prefix-list permitAny
!
ip prefix-list permitAny seq 5 permit 0.0.0.0/0 le 32
!
ip prefix-list Deliver-BGP-B seq 5 permit /21
ip prefix-list Deliver-BGP-B seq 10 permit /23
ip prefix-list Deliver-BGP-B seq 15 permit /24
!
ip prefix-list Deliver-BGP-A seq 5 permit /21
ip prefix-list Deliver-BGP-A seq 10 permit /21
ip prefix-list Deliver-BGP-A seq 15 permit /24
ip prefix-list Deliver-BGP-A seq 20 permit /28
If I do a
SwitchName# show ip bgp neighbors advertised-routes
I see at or about 400 advertised ro...
I think I like the idea of the filter-list better:
https://networklessons.com/bgp/bgp-prevent-transit-as
Is there any issue with doing it either of these two ways? This just happens to be on a 6610-24F
Thank you
This works perfectly fine thus far but no filtering to only advertise local routes out:
router bgp
local-as
neighbor
neighbor
address-family ipv4 unicast
redistribute connected
neighbor
neighbor
exit-address-family
address-family ipv6 unicast
exit-address-family
!
route-map PreferBGP-A permit 10
match ip address prefix-list Deliver-BGP-B
set as-path prepend
route-map PreferBGP-A permit 20
match ip address prefix-list permitAny
!
route-map PreferBGP-B permit 10
match ip address prefix-list Deliver-BGP-A
set as-path prepend
route-map PreferBGP-B permit 20
match ip address prefix-list permitAny
!
ip prefix-list permitAny seq 5 permit 0.0.0.0/0 le 32
!
ip prefix-list Deliver-BGP-B seq 5 permit /21
ip prefix-list Deliver-BGP-B seq 10 permit /23
ip prefix-list Deliver-BGP-B seq 15 permit /24
!
ip prefix-list Deliver-BGP-A seq 5 permit /21
ip prefix-list Deliver-BGP-A seq 10 permit /21
ip prefix-list Deliver-BGP-A seq 15 permit /24
ip prefix-list Deliver-BGP-A seq 20 permit /28
If I do a
SwitchName# show ip bgp neighbors
I see at or about 400 advertised ro...
I think I like the idea of the filter-list better:
https://networklessons.com/bgp/bgp-prevent-transit-as
Is there any issue with doing it either of these two ways? This just happens to be on a 6610-24F
Thank you
1 REPLY 1
Labels
-
7250
1 -
802.3af PoE
1 -
802.3at PoE
1 -
AAA
1 -
ACL
1 -
auto-provision
1 -
auto-provisioning
1 -
Cluster synchronization
1 -
Crypto Keys
1 -
Deployment
1 -
dhcp-66
1 -
fastiron-10
1 -
fastiron-8
1 -
Firmware Upgrade
2 -
ICX
3 -
ICX 7150-C12p
1 -
ICX switch
2 -
ICX Switch Management
6 -
ICX-7150-C12
1 -
ICX-7550
1 -
ICX-8200
1 -
Installation
1 -
not enough electricity
1 -
overlad
1 -
Override PoE Operating Mode
1 -
PD overload
1 -
Poe
1 -
PoE mode.
1 -
power limitations
1 -
Proposed Solution
1 -
RADIUS
1 -
Routing
1 -
RUCKUS Self-Help
2 -
stack
1 -
stack password
1 -
tftp
1 -
Upgrade
1 -
Upgrade path
1 -
We
1 -
zero-touch
1
- « Previous
- Next »
