cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
536
Views
3
Helpful
4
Replies

BGP advertising

keithgoodlip
Level 1
Level 1

I'm recieving a full bgp table from a neighbor which is hosted at an upstream provider on my 7200 router. I have another router 7500 which shares the same bgp as as the 7200. However I would not like the recieved routes from this neighbor to be transfered to the 7500 router. Am I correct when saying i need a route-map?

1 Accepted Solution

Accepted Solutions

Hi Keith

you can do that..

Alternatively you can also deny the route-map and use permit access-list

HTH, rate if it does

Narayan

View solution in original post

4 Replies 4

royalblues
Level 10
Level 10

Hi friend,

There are lot of ways to achieve this but route map is the preferred option as it offers a lot of features.

All you have to do is to configure a route map with an access-list permitting the networks you want to advertise.

access-list 1 permit y.y.y.y

route-map adv-to-7500 permit 10

match ip address 1

router bgp 100

neighbor x.x.x.x route-map adv-to-7500 out

HTH, rate if it does

Narayan

I do not want any of this bgp table to be advertised onto other routers. this 7200 is my default gateway for my internal network.

In your sample config would this acl accomplish this?

access-list 1 deny any any

Thanks,

Keith

Hi Keith

you can do that..

Alternatively you can also deny the route-map and use permit access-list

HTH, rate if it does

Narayan

Hi Keith,

I would use as-path filters in this scenario as there are more flexable. The below config achieves this. The deny statement in the AS path filter shoule be set to the AS number of the peer you want to block (I've used 65001 as an example). This setup will allow other BGP routes to be sent from the 7200 to the 7500 if this is a requirement.

router bgp 65000

no synchronization

bgp log-neighbor-changes

neighbor <7500 address> remote-as 65000

neighbor <7500 address> filter-list 1 out

ip as-path access-list 1 deny permit ^65001_([0-9]*)$

ip as-path access-list 1 permit .*

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco