Hi there, I reviewed this multiple times, but I still can't understand why my prefix-list does not block ingress traffic from neighbor 188.8.131.52.
Can you help me find what I am missing? I already did 'clear ip bgp *' and result is still the same.
Please find attached config and output from show ip bgp.
yes it is correct unless you use a feature called ORF that sends your inbound filter to peer you still see 10/8 as a received route but it is not installed in BGP table.
Edge#show ip bgp neig 184.108.40.206 received-routes
BGP table version is 15, local router ID is 172.16.0.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next Hop Metric LocPrf Weight Path
* 10.0.0.0 220.127.116.11 0 0 387 i <==== This prefix is still in my route table in spite of my prefix-list deny 10.0.0.0/8
the right place to check is the local node BGP table that is seen with sh ip bgp.
you have achieved your objective
Hope to help