Buy or Renew
Buy or Renew
COMING SOON: Umbrella and Secure Access release notes are coming to Cisco Community. The community will be in read-only August 16 – 19. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1093
Views
0
Helpful
6
Replies

VRF Lite Route Leaking

abhayjoshi07
Level 1
Level 1

‎01-26-2020 09:49 PM

I have implemented VRF Lite on Cisco 9410 switch. There are two VRF's "XYZ" & "ABC" configured on the switch. I have a situation in which I have to leak overlapping IPv4 routes between the 2 VRFs. 

 

How do I do it and what will be the best solution to this problem.

Labels:
0 Helpful
6 Replies 6

Georg Pauwen
VIP
VIP

‎01-27-2020 12:59 AM

Hello,

 

below is a generic sample for importing one route:

 

ip routing
!
ip vrf XYZ
rd 100:1
route-target both rd 100:1
import map IMPORT_MAP_FROM_ABC
export map EXPORT_MAP_TO_ABC
!
ip vrf ABC
rd 200:2
route-target both rd 200:2
import map IMPORT_MAP_FROM_XYZ
export map EXPORT_MAP_TO_XYZ
!
interface GigabitEthernet 1/0/1
ip vrf forwarding XYZ
!
interface GigabitEthernet 1/0/2
ip vrf forwarding ABC
!
route-map IMPORT_MAP_FROM_ABC permit 10
match ip address prefix-list IMPORT_PREFIX_FROM_ABC
!
ip prefix-list IMPORT_PREFIX_FROM_ABC seq 5 permit 192.168.1.0/24

0 Helpful

abhayjoshi07
Level 1
Level 1
In response to Georg Pauwen

‎01-27-2020 02:14 AM

@ Georg, How do we leak routes which are overlapping on both the VRF's.

 

 

0 Helpful

Georg Pauwen
VIP
VIP
In response to abhayjoshi07

‎01-27-2020 02:42 AM

Hello,

 

how are the routes overlapping ? Can you post the routes you are trying to leak ?

0 Helpful

abhayjoshi07
Level 1
Level 1
In response to Georg Pauwen

‎01-27-2020 03:57 AM

On the L3 switch I have a 10.10.10.0/24 subnet configured on a SVI which is already being used for servers and it belongs to VRF "XYZ". On the other hand I have a subnet 10.10.10.0/23 that is being learnt via OSPF which is in vrf "ABC". These VRFs were created after some reorganisations and cant change the subnets since these are already in production. Now I want to inject the route 10.10.10.0/24 in VRF "ABC" so that the servers are accessible but for obvious reasons cant do. Is it possible to NAT the subnet 10.10.10.0/24 to a different subnet after it is injected into VRF "ABC" ?
0 Helpful

Georg Pauwen
VIP
VIP
In response to abhayjoshi07

‎01-27-2020 04:15 AM

Hello,

 

so the subnets overlap...are duplicate IP addresses in use as well ? If not, you could just use static host routes, as these would be more specific and override everything else.

 

If so, some sort of NAT could indeed be an option. I will need to lab this...

0 Helpful

abhayjoshi07
Level 1
Level 1
In response to Georg Pauwen

‎01-27-2020 04:21 AM

Yes, the duplicate IPs are in use as well. This is just one sample subnet that I have mentioned and there are few other overlapping subnets that require a solution.

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card