Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2542
Views
1
Helpful
4
Replies

OSPF Intra Area Route Filtering

Go to solution
Don Maker
Level 1
Level 1

‎11-30-2016 05:05 PM - last edited on ‎10-13-2023 11:23 PM by Community Manager

We have an odd situation at work where we would like to restrict an ospf neighbor in one area to only to be able to advertise a certain route. It's for an anycast scenario where an ospf process on a linux machine (not owned by the network team) needs to advertise a /32 for an anycast service. We've agreed (right now anyway) that they can advertise this into ospf using Quagga. We would like to limit the routes they can advertise to a single /25.  I can't think of any way to do this other than using a different IGP, probably iBGP to connect the Quagga process and then filtering the external routes. 

 

I thought about

distribute lists

but that will only prevent unwanted routes from getting into the local routing table, not the LSD. The LSAs will still flood and any downstream ospf router is going to install the routes unless the same

distribute list

is used everywhere up to the ABR where an area

filter-list

can be used to prevent the routes going to area 0. This is not a great solution and if any new routers are brought online without the

distribute list

then there will be problems. Added to which, some of these routers involved are HP procurves that I don't think can do

distribute-lists

anyway.

 

Does anyone have any other thoughts on something like this?

 

Thanks!

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to Don Maker

‎12-01-2016 06:46 AM

That seems to be a reasonable solution. I am glad that you have been able to find the solution to your own question. Thank you for sharing it with the forum.

HTH

Rick

HTH

Rick

View solution in original post

4 Replies 4

Go to solution
Don Maker
Level 1
Level 1

‎11-30-2016 06:06 PM

I think I should be able to do this with a tracked object. That way the server does not need to run a routing protocol at all. I'll have them create a loopback on the server and tell whatever service they want this for (probably DNS) to listen on the loopback address and then the connected server will create a route that tracks that server and then distribute that static route via ospf. 

This should work...

0 Helpful

Go to solution
Don Maker
Level 1
Level 1
In response to Don Maker

‎11-30-2016 06:43 PM

I think this should work, just not sure on the track syntax to use...

Any helpful suggestions?

0 Helpful

Go to solution
Don Maker
Level 1
Level 1
In response to Don Maker

‎11-30-2016 07:36 PM - last edited on ‎10-13-2023 11:25 PM by Community Manager

I think I got it now. I created an

ip sla using icmp

and then a track object using that sla. Then a static route that uses the track. This seemed to do the trick. 

0 Helpful

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to Don Maker

‎12-01-2016 06:46 AM

That seems to be a reasonable solution. I am glad that you have been able to find the solution to your own question. Thank you for sharing it with the forum.

HTH

Rick

HTH

Rick
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card