cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
878
Views
0
Helpful
6
Replies
dedra_live
Beginner

How to restrict BGP advertisement - MPLS

Hello,

We have three sites connected to each other over MPLS network through BGP protocol with various routes advertised. If a fourth site were to be added, how can I restrict the routes advertised by the other three sites in a way that only specific routes gets advertised to the fourth site. Some kind of a BGP filter etc...

Thanks.

6 REPLIES 6
manish arora
Frequent Contributor

Hi,

This Link has enough information on how to filter routes per neighbor :-

http://www.cisco.com/en/US/docs/ios/12_2/ip/configuration/guide/1cfbgp.html#wp1001443

Manish

milan.kulik
Advocate

Hi,

if you are administering the router on the new site, the easiest way is to filter prefixes incoming from the MPLS backbone (route-map using match on ip addresses, AS numbers, etc.).

If you are not administering the new site router and can't trust 100% the administrator, you might ask your MPLS provider to provide you multiple MPLS VPNs and play with route targets to deliver only the necessary prefixes to the new site.

But it really depends on your particular possibilities and goals.

HTH,

Milan

Hi,


I have attached a diagram for my scenario. Could you please let me know if possible through configuration example as to how can I advertise only Route A to branch office 1 and only Router B to branch office 2 from the head office.

Thanks.

Haris P
Enthusiast

You can filter the route in branch1 and branch2.This can be done by applying route-map of prefix-list

Sent from Cisco Technical Support iPhone App

Thanks.


But I would like to control it only from the Head Office Router. Is it possible.

A configuration example would really help.

Hi,

it's quite a challenge, I'm afraid.

If you are not able to configure routers on the remote site, the easiest way would be asking your provider to filter the prefixes sent to them.

If you want to do it all yourself  from the Head Office, there might be a possiblity to "poison" the prefixes you want the Branch Office in AS 65011 to refuse, e.g., by prepending 65011 65010 when sent to the backbone.

But it's a little tricky and dangerous potentially.

HTH,

Milan