Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
933
Views
25
Helpful
8
Replies

BGP prefix-list

crivera
Level 1
Level 1

‎02-14-2006 03:43 AM - edited ‎03-03-2019 11:44 AM

i want to do basic inbound load sharing in BGP. I have an aggregate address configured in this form:

network 195.160.124.0 mask 255.255.255.252

network 195.160.124.0 mask 255.255.255.254

network 195.160.125.0 mask 255.255.255.254

network 195.160.126.0 mask 255.255.255.254

network 195.160.127.0 mask 255.255.255.254

aggregate-address 192.168.124.0 255.255.252.0

This sumarizes the 124.0,125.0,126.0 and 127.0 class c blocks.

if i add to the aggregate-address entry the summary-only option is this equivalent to using:

network 195.160.124.0 mask 255.255.255.252

network 195.160.124.0 mask 255.255.255.254

network 195.160.125.0 mask 255.255.255.254

network 195.160.126.0 mask 255.255.255.254

network 195.160.127.0 mask 255.255.255.254

neighbor 172.1.1.1 prefix-list blockname out

ip prefix-list blockname permit 192.168.124.0 /22

ip prefix-list blockname permit 192.168.124.0 /23

ip prefix-list blockname permit 192.168.125.0 /23

ip prefix-list blockname permit 192.168.126.0 /23

ip prefix-list blockname permit 192.168.127.0 /23

Labels:
0 Helpful
8 Replies 8

Harold Ritter
Cisco Employee
Cisco Employee

‎02-14-2006 04:23 AM

First, your subnet masks are wrong.

/22 is 255.255.252.0 and /23 is 255.255.254.0

Second, the aggregate with summary-only would only advertise the summary 192.168.124.0/22 and not the more specifics. Your prefix-list is different since it allows the aggregate as well as the more specifics.

Hope this helps,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

crivera
Level 1
Level 1
In response to Harold Ritter

‎02-14-2006 04:48 AM

Yes you are right, i made a mistake writing the netmasks it should be 255.255.252.0 and 255.255.254.0

So can i also aggreate with prefix-list?

My idea is: i have to BGP routers, connecting to different ASs, i want to publish the summary trough both, and specifics in each one. so i can load balance the incoming traffic to diferent networks trough diferent neighbor ASs

0 Helpful

Harold Ritter
Cisco Employee
Cisco Employee
In response to crivera

‎02-14-2006 05:54 AM

You are still advertising the more spefics from this router, so I suppose that on the other BGP router you wouldn't be advertising the more specifics.

Is the block you want to advertise limited to 192.168.124/22? If so you should only be advertising half of the more specifics on this BGP router and the other half on the other BGP router.

By the way,

192.168.125.0/23 is wrong, so is 192.168.127.0/23 since the 24th bit is set.

Hope this helps,

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

johansens
Level 4
Level 4

‎02-14-2006 04:28 AM

Hi there,

First of all, the ip prefix-list command is an "exact-match" command unless you specify a "gt" or "le" parameter.

Second; the "network x.x.x.x mask n.n.n.n" command in the BGP-process is also an "exact-match" command which also implies the route must exist in the internal routing table.

So when you see these two "constraints" together, your second configuration would not allow any of the configured networks to be announced to the 172.1.1.1 BGP peer. This is because of your netmasks (which I suspect should be 255.255.252.0 and 255.255.254.0).

If you corrected the netmasks, you would be announcing the /22 network AND the specific /23 networks as well to the 172.1.1.1 peer.

The summary-only option of the "aggregate-address" command will remove the more specific networks from the announcement. It would be equivalent to this config:

network 195.160.124.0 mask 255.255.255.252

network 195.160.124.0 mask 255.255.255.254

network 195.160.125.0 mask 255.255.255.254

network 195.160.126.0 mask 255.255.255.254

network 195.160.127.0 mask 255.255.255.254

neighbor 172.1.1.1 prefix-list blockname out

ip prefix-list blockname permit 192.168.124.0/22

!

ip route 195.160.124.0 255.255.252.0 Null0

!

The static route would be important (but could point to another place) as the network MUST exist in the routingtable for this configuration (unlike when the aggregate-address generates it itself).

Did it help? If so, please rate it.

crivera
Level 1
Level 1
In response to johansens

‎02-14-2006 04:56 AM

yes the netmasks are wrong

would this configuration work?:

network 195.160.124.0 mask 255.255.252.0

network 195.160.124.0 mask 255.255.254.0

network 195.160.125.0 mask 255.255.254.0

network 195.160.126.0 mask 255.255.254.0

network 195.160.127.0 mask 255.255.254.0

neighbor 172.1.1.1 prefix-list blockname out

ip prefix-list blockname permit 192.168.124.0/22

ip prefix-list blockname permit 192.168.124.0/23

ip prefix-list blockname permit 192.168.125.0/23

ip prefix-list blockname permit 192.168.126.0/23

ip prefix-list blockname permit 192.168.127.0/23

0 Helpful

johansens
Level 4
Level 4
In response to crivera

‎02-14-2006 06:27 AM

Hi again,

Well.. some of it could work, but you have some errors..

This would be the needed configs:

network 195.160.124.0 mask 255.255.252.0

network 195.160.124.0 mask 255.255.254.0

network 195.160.126.0 mask 255.255.254.0

neighbor 172.1.1.1 prefix-list blockname out

ip prefix-list blockname permit 192.168.124.0/22

ip prefix-list blockname permit 192.168.124.0/23

ip prefix-list blockname permit 192.168.126.0/23

And you would need to have specific routes in your IGP corresponding to the following networks:

192.168.124.0/22

192.168.124.0/23

192.168.126.0/23

This would then announce ALL of the latter networks to the 172.1.1.1 peer.

Or if you really have /24 networks and want a /22 "aggregate" as well, this is the config:

network 195.160.124.0 mask 255.255.252.0

network 195.160.124.0 mask 255.255.255.0

network 195.160.125.0 mask 255.255.255.0

network 195.160.126.0 mask 255.255.255.0

network 195.160.127.0 mask 255.255.255.0

neighbor 172.1.1.1 prefix-list blockname out

ip prefix-list blockname permit 192.168.124.0/22

ip prefix-list blockname permit 192.168.124.0/24

ip prefix-list blockname permit 192.168.125.0/24

ip prefix-list blockname permit 192.168.126.0/24

ip prefix-list blockname permit 192.168.127.0/24

Which then needs the following networks present in the IGP:

192.168.124.0/22

192.168.124.0/24

192.168.125.0/24

192.168.126.0/24

192.168.127.0/24

And the latter config would then announce ALL of them to the 172.1.1.1 peer.

Did it help? If so, please rate it.

crivera
Level 1
Level 1
In response to johansens

‎02-15-2006 12:26 AM

Could i put in one router

network 195.160.124.0 mask 255.255.252.0

network 195.160.126.0 mask 255.255.255.0

network 195.160.127.0 mask 255.255.255.0

and in my other bgp router

network 195.160.124.0 mask 255.255.252.0

network 195.160.124.0 mask 255.255.255.0

network 195.160.125.0 mask 255.255.255.0

and still mantain redundancy in case one of the routers or the links fail, the routers connect to different ASs

0 Helpful

pkhatri
Level 11
Level 11
In response to crivera

‎02-15-2006 12:59 AM

Yes, that will work. That will allow you to split incoming traffic between the two links. In addition, it will give you the ability to draw all traffic through the other link if either link fails.

Paresh.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card