Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

BGP advertising

I'm recieving a full bgp table from a neighbor which is hosted at an upstream provider on my 7200 router. I have another router 7500 which shares the same bgp as as the 7200. However I would not like the recieved routes from this neighbor to be transfered to the 7500 router. Am I correct when saying i need a route-map?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: BGP advertising

Hi Keith

you can do that..

Alternatively you can also deny the route-map and use permit access-list

HTH, rate if it does

Narayan

4 REPLIES

Re: BGP advertising

Hi friend,

There are lot of ways to achieve this but route map is the preferred option as it offers a lot of features.

All you have to do is to configure a route map with an access-list permitting the networks you want to advertise.

access-list 1 permit y.y.y.y

route-map adv-to-7500 permit 10

match ip address 1

router bgp 100

neighbor x.x.x.x route-map adv-to-7500 out

HTH, rate if it does

Narayan

New Member

Re: BGP advertising

I do not want any of this bgp table to be advertised onto other routers. this 7200 is my default gateway for my internal network.

In your sample config would this acl accomplish this?

access-list 1 deny any any

Thanks,

Keith

Re: BGP advertising

Hi Keith

you can do that..

Alternatively you can also deny the route-map and use permit access-list

HTH, rate if it does

Narayan

Re: BGP advertising

Hi Keith,

I would use as-path filters in this scenario as there are more flexable. The below config achieves this. The deny statement in the AS path filter shoule be set to the AS number of the peer you want to block (I've used 65001 as an example). This setup will allow other BGP routes to be sent from the 7200 to the 7500 if this is a requirement.

router bgp 65000

no synchronization

bgp log-neighbor-changes

neighbor <7500 address> remote-as 65000

neighbor <7500 address> filter-list 1 out

ip as-path access-list 1 deny permit ^65001_([0-9]*)$

ip as-path access-list 1 permit .*

176
Views
3
Helpful
4
Replies