Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
366
Views
5
Helpful
1
Replies

Creating a BGP "filter" for use with an IPSec tunnel?

Pete Johnstone
Level 1
Level 1

‎04-12-2017 11:54 AM

I'm trying to get a Cisco 7300 router to connect to AWS via VPN tunnel w/BGP, and it is mostly configured however it is trying to send all internet routes to the virtual private gateway on the AWS side, which has a hard limit of 100.

My question is how to configure the tunnel to only send certain routes, or set up a BGP filter?  Or what is the best way to do this?

I'm completely unfamiliar with this, so any help would be appreciated.

Labels:
0 Helpful
1 Reply 1

Georg Pauwen
VIP
VIP

‎04-13-2017 12:25 PM

Hello,

the simplest way to filter the outbound routes would be with a prefix list:

ip prefix-list ISP_OUT permit 172.31.0.0/16 le 20
!
router bgp 7224
neighbor 169.254.255.5 prefix-list ISP_OUT out

The prefix list defines the routes you want to send to the AWS gateway. If you post all the routes you want to advertise, we can help you with the specifics of the prefix list.

Customers Also Viewed These Support Documents