[prev in list] [next in list] [prev in thread] [next in thread]
List: quagga-users
Subject: [quagga-users 14393] Re: Filter inbound default route in bgp
From: Hien Phan <phanquochien () gmail ! com>
Date: 2016-08-17 2:37:14
Message-ID: CABtQ6wRovwGDExbEN5C_oz0CehDbJERS9H2icJ6ntFroB+VJFg () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi,
I got it working now after restart bgpd .
Thank you very much!
On Tue, Aug 16, 2016 at 11:38 PM, Alexis Rosen <
quagga-users@alexis.users.panix.com> wrote:
> On Aug 16, 2016, at 12:13 PM, Hien Phan <phanquochien@gmail.com> wrote:
> > I doubled check many times, clear bgp session whenever i apply new
> config. but no luck with route-map, problem still exists.
>
> So, what about my route-map with two prefix lists? Did you try it?
>
> /a
>
> > On Tue, Aug 16, 2016 at 10:45 PM, Alexis Rosen <
> quagga-users@alexis.users.panix.com> wrote:
> > On Aug 16, 2016, at 11:37 AM, Hien Phan <phanquochien@gmail.com> wrote:
> > > Hi there,
> > >
> > > It not work, still dropped all prefix.
> >
> > Really.
> >
> > Are you sure you're using the right prefix-list? Try clearing the
> session.
> >
> > If that doesn't do it, use a route-map with deny...
> >
> > ip prefix-list default-only seq 5 permit 0.0.0.0/0
> > ip prefix-list permit-all seq 5 permit 0.0.0.0/0 le 32
> >
> > route-map all-but-default deny 10
> > match ip address prefix-list default-only
> > route-map all-but-default permit 20
> > match ip address prefix-list permit-all
> >
> > /a
> >
> > > On Tue, Aug 16, 2016 at 10:33 PM, Alexis Rosen <
> quagga-users@alexis.users.panix.com> wrote:
> > > On Aug 16, 2016, at 10:27 AM, Hien Phan <phanquochien@gmail.com>
> wrote:
> > > > Hi there,
> > > >
> > > > Thanks for your reply, but i know that fix.
> > > >
> > > > I still need filter default route, so which is correct way to filter
> default route?
> > >
> > > Perhaps this will work for you?
> > > ip prefix-list all-but-default seq 5 permit 0.0.0.0/0 ge 1
> > >
> > > /a
> > >
> > > > On Tuesday, 16 August 2016, Nick Hilliard <nick@inex.ie> wrote:
> > > > Hien Phan wrote:
> > > > > ip prefix-list deny-route seq 5 deny 0.0.0.0/0 <http://0.0.0.0/0>
> > > > > ip prefix-list deny-route seq 1000 permit 0.0.0.0/0 <
> http://0.0.0.0/0> le 32
> > > >
> > > > no ip prefix-list deny-route
> > > > ip prefix-list deny-route seq 5 deny 0.0.0.0/0
> > >
> >
> >
>
>
[Attachment #5 (text/html)]
<div dir="ltr"><div><div>Hi,<br><br></div>I got it working now after restart bgpd \
.<br><br></div>Thank you very much!<br><br><br></div><div \
class="gmail_extra"><br><div class="gmail_quote">On Tue, Aug 16, 2016 at 11:38 PM, \
Alexis Rosen <span dir="ltr"><<a href="mailto:quagga-users@alexis.users.panix.com" \
target="_blank">quagga-users@alexis.users.panix.com</a>></span> \
wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex"><span class="">On Aug 16, 2016, at 12:13 PM, Hien Phan \
<<a href="mailto:phanquochien@gmail.com">phanquochien@gmail.com</a>> wrote:<br> \
> I doubled check many times, clear bgp session whenever i apply new config. but \
no luck with route-map, problem still exists.<br> <br>
</span>So, what about my route-map with two prefix lists? Did you try it?<br>
<div class="HOEnZb"><div class="h5"><br>
/a<br>
<br>
> On Tue, Aug 16, 2016 at 10:45 PM, Alexis Rosen <<a \
href="mailto:quagga-users@alexis.users.panix.com">quagga-users@alexis.users.<wbr>panix.com</a>> \
wrote:<br> > On Aug 16, 2016, at 11:37 AM, Hien Phan <<a \
href="mailto:phanquochien@gmail.com">phanquochien@gmail.com</a>> wrote:<br> > \
> Hi there,<br> > ><br>
> > It not work, still dropped all prefix.<br>
><br>
> Really.<br>
><br>
> Are you sure you're using the right prefix-list? Try clearing the \
session.<br> ><br>
> If that doesn't do it, use a route-map with deny...<br>
><br>
> ip prefix-list default-only seq 5 permit <a href="http://0.0.0.0/0" \
rel="noreferrer" target="_blank">0.0.0.0/0</a><br> > ip prefix-list permit-all seq \
5 permit <a href="http://0.0.0.0/0" rel="noreferrer" target="_blank">0.0.0.0/0</a> le \
32<br> ><br>
> route-map all-but-default deny 10<br>
> match ip address prefix-list default-only<br>
> route-map all-but-default permit 20<br>
> match ip address prefix-list permit-all<br>
><br>
> /a<br>
><br>
> > On Tue, Aug 16, 2016 at 10:33 PM, Alexis Rosen <<a \
href="mailto:quagga-users@alexis.users.panix.com">quagga-users@alexis.users.<wbr>panix.com</a>> \
wrote:<br> > > On Aug 16, 2016, at 10:27 AM, Hien Phan <<a \
href="mailto:phanquochien@gmail.com">phanquochien@gmail.com</a>> wrote:<br> > \
> > Hi there,<br> > > ><br>
> > > Thanks for your reply, but i know that fix.<br>
> > ><br>
> > > I still need filter default route, so which is correct way to filter \
default route?<br> > ><br>
> > Perhaps this will work for you?<br>
> > ip prefix-list all-but-default seq 5 permit <a \
href="http://0.0.0.0/0" rel="noreferrer" target="_blank">0.0.0.0/0</a> ge 1<br> > \
><br> > > /a<br>
> ><br>
> > > On Tuesday, 16 August 2016, Nick Hilliard <<a \
href="mailto:nick@inex.ie">nick@inex.ie</a>> wrote:<br> > > > Hien Phan \
wrote:<br> > > > > ip prefix-list deny-route seq 5 deny <a \
href="http://0.0.0.0/0" rel="noreferrer" target="_blank">0.0.0.0/0</a> <<a \
href="http://0.0.0.0/0" rel="noreferrer" target="_blank">http://0.0.0.0/0</a>><br> \
> > > > ip prefix-list deny-route seq 1000 permit <a \
href="http://0.0.0.0/0" rel="noreferrer" target="_blank">0.0.0.0/0</a> <<a \
href="http://0.0.0.0/0" rel="noreferrer" target="_blank">http://0.0.0.0/0</a>> le \
32<br> > > ><br>
> > > no ip prefix-list deny-route<br>
> > > ip prefix-list deny-route seq 5 deny <a href="http://0.0.0.0/0" \
rel="noreferrer" target="_blank">0.0.0.0/0</a><br> > ><br>
><br>
><br>
<br>
</div></div></blockquote></div><br></div>
_______________________________________________
Quagga-users mailing list
Quagga-users@lists.quagga.net
https://lists.quagga.net/mailman/listinfo/quagga-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic