10-14-2009 01:16 AM - edited 03-04-2019 06:22 AM
Hi Guys,
I have HQ and some branches that connected over MPLS. each site have one router with 2 Links from different provider.
Currently We have implemented BGP routing on them (with different AS Number).
Now, I'm trying to distribute some traffic on these. In normal condition, I want Voice Traffic go to Link A and others thru Link B. If one of links (on the site) became down, All traffic would go to the UP Link.
I've tried PBR with "set as-path prepend" command to make a specific path longer than others. But, the result was all traffic only go to one ISP, not distributed as I want.
anyone have experience regarding this?
thanks.
10-14-2009 01:28 AM
Hello Muhammad,
if I've understood correctly your scenario:
you have an HQ and some remote sites.
Inter-site connections are made using two MPLS Service Providers.
You have an MPLS L3 VPN and each of your router is a CE node with two eBGP sessions one to ISP1 and one to ISP2.
You would like to divide your traffic based on criteria beyond simple destination address.
For example you would like to send and receive Voip traffic via ISP1.
PBR is the right tool but your set action has to be
set ip next-hop ISP1-ipaddress
as-path prepending is effective only on route-maps applied to a neighbor under router bgp process.
if you did so you made one path more attractive for all possible destinations and only one provider is used to reach it.
If you have distinct ip subnets for Voip you can use prepending but it has to be selective.
! voip subnet
access-list 11 permit 10.10.100.0 0.0.0.255
route-map selective_prep_toISP2 permit 10
match ip address 11
set as-path-prepend yourASN yourASN
! empty final block to advertise all
! other ip subnets without prepending
route-map selective_prep_toISP2 permit 20
router bgp yourASN
neigh isp2.ipaddress route-map selective_prep_toISP2 out
a similar but mirrored ACL and route-map is needed for ISP1.
ISP2 receiving prepended AS path for net 10.10.100.0/24 shouldn't be used on the other site.
Edit:
depending on provider configuration it may be changing or removing your ASN using private-as-override or other command.
if so prepending may be not effective.
Hope to help
Giuseppe
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide