Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1363
Views
0
Helpful
6
Replies

How to restrict BGP advertisement - MPLS

dedra_live
Level 1
Level 1

‎02-19-2011 01:21 PM - edited ‎03-04-2019 11:29 AM

Hello,

We have three sites connected to each other over MPLS network through BGP protocol with various routes advertised. If a fourth site were to be added, how can I restrict the routes advertised by the other three sites in a way that only specific routes gets advertised to the fourth site. Some kind of a BGP filter etc...

Thanks.

Labels:
0 Helpful
6 Replies 6

manish arora
Level 6
Level 6

‎02-19-2011 02:31 PM

Hi,

This Link has enough information on how to filter routes per neighbor :-

http://www.cisco.com/en/US/docs/ios/12_2/ip/configuration/guide/1cfbgp.html#wp1001443

Manish

0 Helpful

milan.kulik
Level 10
Level 10

‎02-20-2011 01:23 AM

Hi,

if you are administering the router on the new site, the easiest way is to filter prefixes incoming from the MPLS backbone (route-map using match on ip addresses, AS numbers, etc.).

If you are not administering the new site router and can't trust 100% the administrator, you might ask your MPLS provider to provide you multiple MPLS VPNs and play with route targets to deliver only the necessary prefixes to the new site.

But it really depends on your particular possibilities and goals.

HTH,

Milan

0 Helpful

dedra_live
Level 1
Level 1
In response to milan.kulik

‎04-10-2011 10:49 PM

Hi,


I have attached a diagram for my scenario. Could you please let me know if possible through configuration example as to how can I advertise only Route A to branch office 1 and only Router B to branch office 2 from the head office.

Thanks.

0 Helpful

Haris P
Level 4
Level 4

‎04-10-2011 11:03 PM

You can filter the route in branch1 and branch2.This can be done by applying route-map of prefix-list

Sent from Cisco Technical Support iPhone App

0 Helpful

dedra_live
Level 1
Level 1
In response to Haris P

‎04-10-2011 11:42 PM

Thanks.


But I would like to control it only from the Head Office Router. Is it possible.

A configuration example would really help.

0 Helpful

milan.kulik
Level 10
Level 10
In response to dedra_live

‎04-10-2011 11:54 PM

Hi,

it's quite a challenge, I'm afraid.

If you are not able to configure routers on the remote site, the easiest way would be asking your provider to filter the prefixes sent to them.

If you want to do it all yourself  from the Head Office, there might be a possiblity to "poison" the prefixes you want the Branch Office in AS 65011 to refuse, e.g., by prepending 65011 65010 when sent to the backbone.

But it's a little tricky and dangerous potentially.

HTH,

Milan

0 Helpful
Customers Also Viewed These Support Documents
Top