Re: BGP no-filter (correction)

From: kym blair (kymblair@xxxxxxxxxxx)
Date: Mon Jun 17 2002 - 10:40:27 GMT-3

• Next message: TK-Network Çözümleri: "RE: BGP no-filter (correction)"
• Previous message: kym blair: "Re: BGP no-filter (correction)"
• Maybe in reply to: kym blair: "Re: BGP no-filter (correction)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Oops, Solution 3 had an error. Should be:

SOLUTION 3 (lets all routes except .20 go):

R1

access-list 12 deny 10.10.20.0 0.0.0.255

route-map BLOCK30 permit 10
match ip address 12
route-map BLOCK30 permit 20

bgp 4
neighbor 10.10.30.2 route-map BLOCK30 out

-------or-----------

SOLUTION 3 (lets all routes except .20 go):

R1

access-list 12 permit 10.10.20.0 0.0.0.255

route-map BLOCK30 deny 10
match ip address 12
route-map BLOCK30 permit 20

bgp 4
neighbor 10.10.30.2 route-map BLOCK30 out

>From: "kym blair" <kymblair@hotmail.com>
>Reply-To: "kym blair" <kymblair@hotmail.com>
>To: umit.askan@probil.com.tr, ccielab@groupstudy.com
>Subject: Re: BGP no-filter
>Date: Mon, 17 Jun 2002 13:22:55 +0000
>
>SOLUTION 1 (only permits route 10.10.10.0 to be advertised):
>
>R1
>
>access-list 12 permit 10.10.10.0 0.0.0.255
>
>route-map LET10GO permit 10
>match ip addr 12
>
>bgp 4
> neighbor 10.10.30.2 route-map LET10GO out
>
>--------------------------------------------------
>
>SOLUTION 2 (same):
>
>R1
>
>access-list 12 permit 10.10.10.0 0.0.0.255
>
>bgp 4
> neighbor 10.10.30.2 distribute-list 12 out
>
>---------------------------------------------------
>SOLUTION 3 (lets all routes except .20 go):
>
>R1
>
>access-list 12 deny 10.10.20.0 0.0.0.255
>
>route-map BLOCK30 deny 10
> match ip address 12
>route-map BLOCK30 permit 20
>
>bgp 4
> neighbor 10.10.30.2 route-map BLOCK30 out
>
>--------------------------------------------------
>SOLUTION 4 (filters inbound; not as effective):
>
>R2
>
>access-list 12 permit 10.10.10.0 0.0.0.255
>
>route-map LET10IN permit 10
> match ip address 12
>
>bgp 4
> neighbor 10.10.30.1 route-map LET10IN in
>
>
>
>HTH, Kym
>--------------------------------------------------------
>
>
>>From: \mit A~kan (TK-Network Gvz|mleri) <umit.askan@probil.com.tr>
>>Reply-To: \mit A~kan (TK-Network Gvz|mleri) <umit.askan@probil.com.tr>
>>To: "Ccie (E-mail)" <ccielab@groupstudy.com>
>>Subject: BGP no-filter
>>Date: Mon, 17 Jun 2002 15:59:50 +0300
>>
>>Hi,
>>
>>I have got a problem like that :
>>
>>network 10.10.10.0 R1-------EBGP--------R2
>>network 10.10.20.0
>>
>>I want to see only 10.10.10.0 at R2 bgp table. But if you look to the
>>R1's advertised routes to R2, you will see 10.10.10.0 and 10.10.20.0.
>>You can't do anything on R2 for that routes.
>>
>>Best Regards
>>
>>\mit A~kan
>>Consulting Network Engineer
>>CCNP, CCDP, CCNP-Security, CCNP-Voice Access
>>
>> > Probil Bilgi Islem Destek ve Danismanlik San. ve Tic. A.S.
>>Eski Buyukdere Caddesi Dilaver Sokak No.4
>>Otosanayi 4. Levent 80660 Istanbul
>>
>>Tel: +90 (212) 317 61 00 (219)
>>Direkt : +90 (212) 317 62 19
>>Faks: +90 (212) 325 55 15
>>E-Mail: umit.askan@probil.com.tr
>>Web: www.probil.com.tr

• Next message: TK-Network Çözümleri: "RE: BGP no-filter (correction)"
• Previous message: kym blair: "Re: BGP no-filter (correction)"
• Maybe in reply to: kym blair: "Re: BGP no-filter (correction)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue Jul 02 2002 - 08:12:34 GMT-3