Solved: Hello,

wfqk · ‎12-30-2016

Hi As we know, bgp route-policy controls if routes can be forwarded. Here are example:

If route 10.1.0.0/16 is permitted to pass in route-policy, the route can be forwarded to pass. If route is10.1.0.0/24 under the same route-policy, can it be forwarded to pass?

It looks like there is difference with ACL for traffic in interface

Thank you

Georg Pauwen · ‎12-31-2016

Hello,

whatever is matched in the route policy needs to be in the routing table. If 10.1.0.0/16 is in the routing table, it will match (and pass). If only 10.1.0.0/16 is in the routing table, and you try to match 10.1.0.0/24, it will be dropped (due to the implicit drop/deny at the end of any route map).

Is this what you are asking ?

View solution in original post

Georg Pauwen · ‎01-01-2017

Hello,

exactly. If you allow e.g. 10.0.0.0/8 to pass, everything 'below' would pass as well, such as 10.1.0.0/16, or 10.1.1.0/24. With BGP route maps, you need exact matches.

View solution in original post

Georg Pauwen · ‎12-31-2016

Hello,

whatever is matched in the route policy needs to be in the routing table. If 10.1.0.0/16 is in the routing table, it will match (and pass). If only 10.1.0.0/16 is in the routing table, and you try to match 10.1.0.0/24, it will be dropped (due to the implicit drop/deny at the end of any route map).

Is this what you are asking ?

wfqk · ‎12-31-2016

Thank you so much for your reply. Yes you are right.

It's opposite to ACL in interface, It can permit all traffic under the prefix to pass, right?

Georg Pauwen · ‎01-01-2017

Hello,

exactly. If you allow e.g. 10.0.0.0/8 to pass, everything 'below' would pass as well, such as 10.1.0.0/16, or 10.1.1.0/24. With BGP route maps, you need exact matches.

wfqk · ‎01-01-2017

Thank you!

Route mask with /16 or /24 under bgp route-policy in ASR router