I think the problem is that admin distance configured on the static route only has local significance on PE2. Once the backup kicks in, it will stay in because to the remote BGP routers, the routes have the same properties (metrics). The answer lies in modifying a BGP attribute so that other routers can see which is preffered.

I will not advice weight, because it is not propagated to peers. Rather than increasing the AS-Path, I feel local preference would be a neater and better solution.

Hi olorunoba your assistance is much appreciated as well. I will need your assistance with this as well. How would I go about achieving this change to a specific vrf and it's routes.

Hi nz-ipv6 thanks for your help with this situation. I actually need a little more assistance. My question to you would be how would I go about addressing this situation to a specific vrf?

Hi hks,

I think, All you need to do is make it relevant for for a specific vrf.

If you can send me the relevant config, I will try and send you the modified one.

Thanks

Trib

you can try this

ip route vrf vpn x.x.x.x y.y.y.y z.z.z.z 220

route-map red

set local-preference 50

router bgp x

address-family ipv4 vrf vpn

red static route-map red

If you want a subset of the vrf routes to be mathed, then you might have to create an access-list or profix list to match in the route-map.

The solution would work also, for ipv4 routes.

This will not work on PE2.

PE2 will still use the local floating static route.The reason is that static routes are redistributed with weight of 32768.

And for the BGP Best path alogrithm weight is before Local Preference.

Haaa, I see your point. The weight is for the local router.

Hi nz-ipv6 I've been trying to get this going but if you could give a helping hand I would appreciate it.

I tried to apply the route-map with the local preference but could not apply it to the specific address family for the vrf. I won't be able to prepend using the AS because of all the other vrf's we have. I just need to be specific for a particular vrf. I tried to look for commands and how to apply it all over the place but could not find any. Can you assist?

router bgp xxxxx

no synchronization

no bgp default ipv4-unicast

bgp log-neighbor-changes

neighbor pe-bgp peer-group

neighbor pe-bgp remote-as xxxxx

neighbor pe-bgp update-source Loopback0

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

no auto-summary

!

address-family ipv4 multicast

no auto-summary

no synchronization

exit-address-family

!

address-family vpnv4

neighbor pe-bgp activate

neighbor pe-bgp next-hop-self

neighbor pe-bgp send-community extended

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

neighbor x.x.x.x peer-group pe-bgp

no auto-summary

exit-address-family

!

address-family ipv4 vrf cust1

redistribute connected

redistribute static

no auto-summary

no synchronization

exit-address-family

!

ip route vrf cust1 10.11.0.0 255.255.255.0 10.253.3.30 210

!

route-map cust1 permit 10

set local-preference 50

Yes, setting a local preference would ensure that the other routers sees it as a backup route. But the router on which it is configured (PE2 in this situation) would still prefer it, as it was rightly pointed out that the redistributed routes have a weight of 32678 and weight are considered before local preference in the path selection.

Hence the weight configuration is to ensure that the local router also uses the route as a backup. Both the weight and local preference is needed for a comprehensive solution.

But if my route in PE2 has an AD of 220 , then it should not create an isue, as it will learn 200 AD from PE1, that should work right. Jus a thought

Yes, thats the initial thought, but you find it does not work exactly like. During initial configuration, the static route does not kick in. But after failing over, the route is not injected out. It seems to me that once the route has been redistributed into BGP, the AD is not used anymore. Someone might want to give a more technical explanation.

No i believe that was the behavour for an entire network and i think it is an issue because the comparison is between 2 BGP routes across the network so AD doesnt even come into the picture. But adding a 220 AD with a lower local pref may jus solve the issue. What do u think ;-)