I have an issue where I am using VRF-aware IPsec to building L2L VPN tunnels into a VRF. This is working fine, but I am now trying to export the VPN route into other VRFs (in effect creating a Management VRF with a single L2L tunnel, which can route into other VRFs).
The issue I am having is with exporting this static route.
I am labelling the route with an additional RT (576:1001) and this gets imported into other VRFs (similarly the other VRFs connected routes are imported into the Management VRF through another RT.
The RRI route injected into the Management VRF (CUST-10.97.90.0-23) is 172.29.240.0/20:
ASR1#sh ip route vrf CUST-10.97.90.0-23 | b Gate
Gateway of last resort is not set
10.0.0.0/8 is variably subnetted, 4 subnets, 2 masks
is directly connected, 04:41:25, GigabitEthernet0/0/2.538
B 10.97.88.0/23 is directly connected, 2w5d, GigabitEthernet0/0/2.575
C 10.97.90.0/23 is directly connected, GigabitEthernet0/0/2.576
L 10.97.90.5/32 is directly connected, GigabitEthernet0/0/2.576
172.29.0.0/20 is subnetted, 1 subnets
S 172.29.240.0 [1/0] via 109.X.X.1, GigabitEthernet0/0/0
The route makes it into the BGP table with the correct RTs (as per the tested export-maps):
ASR1#sh ip bgp vpnv4 vrf CUST-10.97.90.0-23 172.29.240.0/20
BGP routing table entry for 1:576:172.29.240.0/20, version 554
Paths: (1 available, best #1, table CUST-10.97.90.0-23)
1. Introduction Internet security is important with the increasing
attacks that are happening every day. Many internet and browsing
security solutions exist, but some are not very easy to use or maybe the
question is how can I enable them? In this referen...
Cisco Software Manager Server API Guide This document describes the
programmatic interfaces, RESTful APIs, which are supported by Cisco
Software Manager Server (CSM Server). Overview CSM Server supports a set
of finite RESTful APIs. The first step to use ...
If you are using Cisco's new linux-based Cisco Software Manager server,
then you probably want to make sure there is a startup service for
it.I'll assume that you've already installed the CSM server on a
systemd-based linux system. The commands given belo...