I believe that we need some clarification from the original poster. My understanding of the original post is that they have a complete class C network and that they want to subdivide (subnet) it so that various of their customers can use parts of it. If my understanding is correct then advertising the complete /24 to the ISP (which I assume is the BGP neighbor) is appropriate. If my understanding is not correct then please clarify what is the situation.

Advertising a /29 to an ISP generally does not work since many ISP will not advertise anything smaller than a /24.

If my understanding is correct then the BGP to the ISP is ok and we need to look at how they communicate with and route to their customers who are using parts of this network.

HTH

Rick

Hi Rick,

You are right. I cannot advertise anything smaller than /24.

So I advertise the complete /24 segment. My actual segment is /22.

However, I have a few customer that will be using this range and I need to subnet it with different gateway.

I am stuck because it does not allow me to subnet it.

I also have a /48 subnet of IPv6 and thinking to advertise part of it /50.

Please advice.

Hi,

As Daniele indicated, you need to configure a static route (to null0) for the /24 you want to advertise or better the /22 that you own and have a matching network statement under the BGP configuration. You will then be able to subnet this as you will internally.

Regards,

Hi,

The same approach does not seems to be working for ipv6.

For IPv4, i have /22 but choose to advertise /24 only. It allows the subnetting.

When I do a route to null0, it allows for further breaking of the segment to /29 or /28.

However, for IPv6, I have a /48 segment and I choose to advertise only /50.

The same approach doesn't seems to be working.

router bgp myas-NUM
 bgp router-id rid.3
 bgp log-neighbor-changes
 neighbor B:B:B::29 remote-as RMAS-NUM
 neighbor B:B:B::29 description --- eBGP Uplink ---

 address-family ipv6
  network A:A:A:C000::/50
  neighbor B:B:B::29 activate
  neighbor B:B:B::29 next-hop-self
  neighbor B:B:B::29 remove-private-as
  neighbor B:B:B::29 prefix-list PL-ISP out
 exit-address-family

ipv6 route ::/0 B:B:B::29

ipv6 prefix-list PL-ISP seq 10 permit A:A:A:C000::/50 le 64

Please help.

Thanks

The advertisement looks normal but it is not working

sh bgp ipv6 uni nei B:B:B::29 ad
BGP table version is 9, local router ID is rid.3
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*> A:A:A:C000::/50
                    ::                       0         32768 i

Total number of prefixes 1

Please define "not working". Is it not being installed in the RIB of the bgp neighbor router? Do you see it in BGP?

Regards,

I do not see the ipv6 static route to null0 for the specific /50. Did you configure it. Bear in mind that the rule for the network statement is that it need a matching route in the RIB to be effective.

Regards,

Hi

even with the route to null0, the bgp not working

router bgp myas-NUM
 bgp router-id rid.3
 bgp log-neighbor-changes
 neighbor B:B:B::29 remote-as RMAS-NUM
 neighbor B:B:B::29 description --- eBGP Uplink ---
 address-family ipv6
  network A:A:A:C000::/50
  neighbor B:B:B::29 activate
  neighbor B:B:B::29 next-hop-self
  neighbor B:B:B::29 remove-private-as
  neighbor B:B:B::29 prefix-list PL-ISP out
 exit-address-family

ipv6 route ::/0 B:B:B::29

ipv6 route A:A:A:c000::/50 Null0

ipv6 prefix-list PL-ISP seq 10 permit A:A:A:C000::/50 le 64

I have the interface IP as follows

interface GigabitEthernet0/1
 ipv6 address A:A:A:C000::1/64 (even A:A:A:C000::1/50 not working)
 ipv6 enable

Am I correct in understanding that your issue with the IPv4 addresses is resolved and that you can do what you need to do with these addresses and that your remaining issue is with the IPv6 addresses?

HTH

Rick

Hi,

I could change the Interface IP to A.A.A.1/29 after I put in the route to null0.

The BGP works and I could ping the Interface from Internet.

I need to subnet it further for our customer use.

I will do this tonight.

However, the same config applied to IPv6 does not work though it advertisement look correct.

What do you mean by "it is not working"? From the following output, it certainly looks like the /50 is being advertised.

sh bgp ipv6 uni nei B:B:B::29 ad
BGP table version is 9, local router ID is rid.3
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*> A:A:A:C000::/50
                    ::                       0         32768 i

Total number of prefixes 1

Regards,

Hi,

Even though the advertisement looks right, I don't see the advertised subnet when I query it from BGP Lookup table.

I also could not ping the interface from Internet and a PC connected to this segment has no Internet access.

interface GigabitEthernet0/0
description WAN Interface
ip address B.B.B.134 255.255.255.252
duplex auto
speed auto
ipv6 address BB:BB:BB::2A/126
ipv6 enable

interface GigabitEthernet0/1
description LAN Interface
ip address A.A.A.1 255.255.255.248
duplex auto
speed auto
ipv6 address AA:AA:AA:C000::1/64
ipv6 enable

router bgp MY-AS-NUM
bgp router-id RID.3
bgp log-neighbor-changes
neighbor BB:BB:BB::29 remote-as REM-AS-NUM
neighbor BB:BB:BB::29 description --- IPv6 eBGP Uplink ---
neighbor B.B.B.133 remote-as REM-AS-NUM
neighbor B.B.B.133 description --- IPv4 eBGP Uplink ---

address-family ipv4
no synchronization
bgp dampening
network A.A.A.0 mask 255.255.255.0 ( I advertised /24 from /22 i have)
neighbor BB:BB:BB::29 activate
neighbor B.B.B.133 activate
neighbor B.B.B.133 next-hop-self
neighbor B.B.B.133 remove-private-as
neighbor B.B.B.133 prefix-list PL-ISP out
no auto-summary
exit-address-family

address-family ipv6
network AA:AA:AA:C000::/50 ( I advertised /50 from /48 i have)
neighbor BB:BB:BB::29 activate
neighbor BB:BB:BB::29 next-hop-self
neighbor BB:BB:BB::29 remove-private-as
neighbor BB:BB:BB::29 prefix-list PL-ISP-V6 out
exit-address-family

ip forward-protocol nd

no ip http server
no ip http secure-server

ip route 0.0.0.0 0.0.0.0 GigabitEthernet0/0
ip route A.A.A.0 255.255.255.0 Null0 (without this - I loss internet access for my LAN)
ip route A.A.A.8 255.255.255.248 A.A.A.2 (I segment it for customer A - not sure if this works)
ip route A.A.A.16 255.255.255.240 A.A.A.2 (I segment it for customer B - not sure if this works)

ip prefix-list PL-ISP seq 18 permit A.A.A.0/24

ipv6 route AA:AA:AA:C000::/50 Null0
ipv6 route ::/0 BB:BB:BB::29

ipv6 prefix-list PL-ISP-V6 seq 10 permit AA:AA:AA:C000::/50 le 64

Thanks