Hi there guys, I am hoping somebody can provide me with a little sanity check. Unfortunately we do not have a lab capable of BGP for me to test this with.
I need to ensure customer eBGP peers only send us the allowed standard communites we expect to see.
I have created the following extended community:
ip community-list 100 permit 65535:40119
ip community-list 100 permit 65535:51119
ip community-list 100 permit 65535:51129
ip community-list 100 deny .*
I want to accept the first three communities and drop the rest. Based on these communities we then apply traffic engineering further upstream. At present we do not apply any sanity check to the customer prefixes and have notices customers sending us other communites we dont want :-(
Can you tell me if this community-list will have the desired effect?
Introduction: The "external-out enable" command is available for
configuration under the "router ospf process" in case of the IOS-XR
operating system. This command basically enables advertisement of
intra-area routes on the device as external routes in th...
IntroductionIn this article we'll discuss how to troubleshoot packet
loss in the asr9000 and specifically understanding the NP drop counters,
what they mean and what you can do to mitigate them. This document will
be an ongoing effort to improve troublesh...