Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1742
Views
0
Helpful
5
Replies

BGP route-map to filter default route with specific RT but allow all prefixes from other VRF's

smailmilak
Level 4
Level 4

‎04-10-2017 01:32 AM - edited ‎03-05-2019 08:19 AM

Hi,

I am trying to create a route-map on IOS 122-33.SRE11 where I want to achieve this:

Allow only default route from RT 65101:50

Allow all routes from RT 65101:609 and 65101:10

I have a preflix-list with 0.0.0.0/0 for the default route in Route-map sequence 10 where I match the prefix-list and extcommunity list with RT 65101:50.

Second sequence is with with ext-community list with RT 65101:609 and 65101:10

Problem is that the route-map filters all routes that are not in the prefix-list. I want that the router checks the prefix-list only for RT 65101:50.

I have tried everything but whatever I do the router is denying all other routes except 0.0.0.0/0.

Workaround is to have the prefixes in the preflix-list I want to allow but this is not scalable.

On IOS-XR with RPL it's simple and I have accomplished this.

Labels:
0 Helpful
5 Replies 5

paul driver
VIP
VIP

‎04-10-2017 02:11 AM

Hello

Do you have extended communities enabled?
Can you post the config please of your route-map and prefix-list

res
Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

smailmilak
Level 4
Level 4
In response to paul driver

‎04-10-2017 02:17 AM

Hi,

do you mean extended communities between the BGP neighbors? Yes.

Here is one of the multiple configs I have tried to use.

ip prefix-list DEF_ONLY

seq 5 permit 0.0.0.0/0

ip extcommunity-list standard INTERNET_VRF permit rt 65101:50
ip extcommunity-list standard INTERNAL_VRF permit rt 65101:10 rt 65101:609

route-map IGW_FILTER permit 10
match extcommunity INTERNAL_VRF
continue 30
route-map IGW_FILTER permit 15
match ip address prefix-list DEF_ONLY
match extcommunity INTERNET_VRF
continue 30
route-map IGW_FILTER permit 30
route-map IGW_FILTER deny 40

0 Helpful

Hitesh Vinzoda
Level 4
Level 4
In response to smailmilak

‎04-12-2017 04:23 AM

Hi Dude,

Can you try creating route-maps withouth "continue" statement and check.

Thanks

Hitesh

0 Helpful

Hitesh Vinzoda
Level 4
Level 4

‎04-10-2017 02:15 AM

Hi Dude,

I suggest that you call a prefix list in permit 20 which is 0.0.0.0/0 le 32 and see if that helps.

HTH

Hitesh

0 Helpful

smailmilak
Level 4
Level 4
In response to Hitesh Vinzoda

‎04-10-2017 02:47 AM

Hi,

using 0.0.0.0/0 le 32 in seq 20 allows all routes. Maybe I am doing it wrong?

ip prefix-list DEF_ONLY_TEST: 1 entries
seq 5 permit 0.0.0.0/0

ip prefix-list INTERNAL_VRF: 1 entries
seq 5 permit 0.0.0.0/0 le 32

route-map IGW_FILTER_TEST, permit, sequence 10
Match clauses:
ip address prefix-lists: DEF_ONLY_TEST
extcommunity (extcommunity-list filter):INTERNET_VRF
Set clauses:
Policy routing matches: 0 packets, 0 bytes
route-map IGW_FILTER_TEST, permit, sequence 15
Match clauses:
ip address prefix-lists: INTERNAL_VRF
Set clauses:
Policy routing matches: 0 packets, 0 bytes
route-map IGW_FILTER_TEST, deny, sequence 40
Match clauses:
Set clauses:
Policy routing matches: 0 packets, 0 bytes

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card