02-21-2022 08:21 AM
Hi Everyone,
I'm trying to filtering routes in a Nexus Device but i can't , this is the scenario:
Nexus 1 advertise routes: 10.0.0.1/32, 10.0.0.2/32, 10.0.0.3/32
Nexus 2 have to allow 10.0.0.1/32, 10.0.0.2/32 and deny 10.0.0.3/32
So i tried using a table-map
Prefix List:
ip prefix-list FILTRO-OSPF seq 10 permit 10.0.0.1/32
ip prefix-list FILTRO-OSPF seq 10 permit 10.0.0.2/32
Route map:
route-map FILTER-OSPF permit 10
match ip address prefix-list FILTRO-OSPF
route-map FILTER-OSPF deny 20
OSPF
router ospf 100
table-map FILTER-OSPF filter
But after apply this, all routes al filtering, also i try with Filter-list but doesn't work
Please let me know if i'm doing something wrong
Patricio
02-21-2022 08:53 AM - edited 02-21-2022 08:53 AM
not sure how your OSPF area, make sure Filter works :
FILTER LIST - Filters only LSA3, so - only on ABR, but filters from OSPF Database.
filter-list can be applied: IN - into the area, OUT - out of the area
02-21-2022 09:20 AM
Hi
This can be much more simple:
access-list 1 deny 10.0.0.3
access-list 1 permit any
router ospf x
redistribute-list 1 in
I am considering intra-area, as you did not say this is a different area.
02-21-2022 10:08 AM
Hi Flavio,
Unfortunately that command is not supported in Nexus Devices.
02-21-2022 10:55 AM - edited 02-21-2022 10:58 AM
Can you try using the reverse logic ie.
ip prefix-list FILTRO-OSPF seq 10 permit 10.0.0.3/32
route-map FILTER-OSPF deny 10
match ip address prefix-list FILTRO-OSPF
route-map FILTER-OSPF permit 20
Jon
02-21-2022 11:10 AM
@Jon Marshall yes thats way we need to do reverse way, but not sure if OP has that requirement for the rest all in for the prefxes.
02-22-2022 11:26 AM
so it not support can you explain the topology may be we can find other solution.
02-22-2022 12:06 PM - edited 02-22-2022 12:07 PM
Hello
try tweaking your route-map and prefix-list for the table-map
ip prefix-list FILTRO-OSPF permit 10.0.0.3/32
route-map FILTER-OSPF deny 10
match interface x/x
match ip address prefix-list FILTRO-OSPF
route-map FILTER-OSPF permit 99
Additionally if your trying to negate Nexus 2 from advertising that host address, The below should negate type3 advertisement so assumption is Nk2 is an ABR
ip prefix-list FILTRO-OSPF deny 10.0.0.3/32
ip prefix-list FILTRO-OSPF permit 0.0.0.0/0 le 32
router ospf 100
area X filter-list prefix FILTRO-OSPF OUT
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide