From: Jongsoo (bstrt2004@gmail.com)
Date: Thu Nov 10 2005 - 02:53:55 GMT-3
I think the below section meant prefix denial due to default as well
as configured BGP policy. If you configured a policy but there is a
zero count of denial, it won't show up.
I would interprete the below output in your email as following( I may
not be 100% coprrect)
1) the local router drops one inbound prefiex advertized by the peer
due to duplicate ( maybe denied prefix has ASN of the local )router???
2) the local router drops two outbound prefixes advertisement to the
peer because the peer has bestpath(maybe the peer annouced two prefix
so that the local router don't announce those route back to the peer)
Here is copy from CCO
Local Policy Denied Prefixes
Prefixes denied due to local policy configuration. Counters are
updated for inbound and outbound policy denials. The fields under this
heading are displayed only if the counter has a non-zero value.
* route-map
Displays inbound and outbound route-map policy denials.
* filter-list
Displays inbound and outbound filter-list policy denials.
* prefix-list
Displays inbound and outbound prefix-list policy denials.
* Ext Community
Displays only outbound extended community policy denials.
* AS_PATH too long
Displays outbound AS-path length policy denials.
* AS_PATH loop
Displays outbound AS-path loop policy denials.
* AS_PATH confed info
Displays outbound confederation policy denials.
* AS_PATH contains AS 0
Displays outbound denials of AS 0.
* NEXT_HOP Martian
Displays outbound martian denials.
* NEXT_HOP non-local
Displays outbound non-local next-hop denials.
* NEXT_HOP is us
Displays outbound next-hop-self denials.
* CLUSTER_LIST loop
Displays outbound cluster-list loop denials.
* ORIGINATOR loop
Displays outbound denials of local originated routes.
* unsuppress-map
Displays inbound denials due to an unsuppress-map.
* advertise-map
Displays inbound denials due to an advertise-map.
* VPN Imported prefix
Displays inbound denials of VPN prefixes.
* Well-known Community
Displays inbound denials of well-known communities.
* SOO loop
Displays inbound denials due to site-of-origin.
* Bestpath from this peer
Displays inbound denials because the bestpath came from the local router.
* Suppressed due to dampening
Displays inbound denials because the neighbor or link is in a dampening state.
* Bestpath from iBGP peer
Deploys inbound denials because the bestpath came from an iBGP neighbor.
* Incorrect RIB for CE
Deploys inbound denials due to RIB errors for a CE router.
* BGP distribute-list
Displays inbound denials due to a distribute list.
HTH
Jongsoo
On 11/9/05, Andrew Lissitz (alissitz) <alissitz@cisco.com> wrote:
> Within this command, a section lists:
>
> Outbound Inbound
> Local Policy Denied Prefixes: -------- -------
> Suppressed duplicate: 0 1
> Bestpath from this peer: 2 n/a
> Total: 2 1
> Number of NLRIs in the update sent: max 0, min 0
>
>
> Does any one have a good troubleshooting note concerning the output of
> this section? Does local policy refer to configured or default BGP
> filtering?
>
> Just curious if anyone uses this command and subsequent section to find
> problems in their config or deployment options.
>
> Kindest regards group
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Thu Dec 01 2005 - 09:12:06 GMT-3