Re: Redistribution Route-Map with an ACL deleted

xvoltage21lph · ‎07-20-2020

I got an issue about Redistribution with Route-Map with ACL, but this ACL doesn't is shown in the config or it was deleted.
First, my question is that if I delete an ACL associated with a redistribute route-map the match condition wouldn't happen so the routes that would be redistributed now are dropped, is that right?

In practice, the router that shows this weird behavior is doing redistribution between OSPF to BGP, it's like route-map doesn't do any filter.

I took this one in a CISCO7606 with IOS c7600s72033-advipservicesk9-mz.122-33.SRD5.bin

Does anyone have this case before?

balaji.bandi · ‎07-20-2020

If the ACL not available, the Route-map not take any effect since nothing matched.

regarding other issues, you need to provide more information regarding the weird issue you were mentioned in the post.

12.2 is a very old code, maybe some bugs, that only confirmed if you can post some example config.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

xvoltage21lph · ‎07-20-2020

I could simulate on GNS3, sorry but I can't share configuration from my customer. I tried to provide all information about the case.

this configuration on router responsible for redistribution:

interface Loopback0
ip address 1.1.1.1 255.255.255.255
!
interface Ethernet0/0
no ip address
shutdown
duplex auto
!
interface GigabitEthernet0/0
ip address 10.0.1.1 255.255.255.0
duplex full
speed 1000
media-type gbic
negotiation auto
!
interface GigabitEthernet1/0
ip address 10.0.2.1 255.255.255.0
negotiation auto
!
!
router ospf 1
router-id 1.1.1.1
log-adjacency-changes
redistribute bgp 1 subnets route-map bgp-to-ospf8
network 10.0.2.0 0.0.0.255 area 0
!
router bgp 1
no synchronization
bgp router-id 1.1.1.1
bgp log-neighbor-changes
redistribute ospf 1
neighbor 10.0.1.2 remote-as 2
no auto-summary
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
!
no cdp log mismatch duplex
!
route-map bgp-to-ospf8 permit 10
match ip address bgp-to-ospf8

I search in lot of guides but this specific scenario is very uncommon, thanks for your answer.

Richard Burts · ‎07-20-2020

The action of what to do when an access list is applied in some context but the access list is not in the configuration has changed over time (dependent on version and perhaps dependent on platform). In lots of older code if the access list was missing it was like it still had the implicit deny any and traffic would fail. In most more recent code if the access list is not present then it is like there is no match done and all traffic is permitted. I assume that this is the behavior if the access list in a match statement of a route map is missing.

HTH

Rick

xvoltage21lph · ‎07-20-2020

Hey Richard,

I don't add any ACL's only this route-map on my lab and on the customer router but in fact the router on the customer network acts as if route-map map doesn't exist. In practice it really take the same new behavior.

Thanks for your answer.

paul driver · ‎07-20-2020

Hello

No acl within your route-map and that route-map is specified in a redistribution then in your OP all bgp prefixes into ospf will be redistributed as no match is made.

Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul