Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1110
Views
0
Helpful
1
Replies

Discard incoming BGP route updates, default route, memory used

Go to solution
S.Srivas_2
Level 1
Level 1

‎04-07-2010 04:24 AM - edited ‎03-04-2019 08:03 AM

Hi All,

We have a situation. The BGP routing table size is too large in the Router pair DR1/2, that has only one (redundant) path(s) to internet router iR1/2 pair.

On DR1 and 2, I'm planning to discard BGP route updates from peers iR1/2, and instead redistribute default route (pointing to iR1/2) on the DR1/2 into BGP.

Is this good approach?

Also how will iR1/2, without any change, handle the private IP subnets, as the DR1/2 might send private traffic, because of default route?

(Please see attached .doc)

Thanks for checking this

SS

Labels:
Preview file
38 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎04-07-2010 06:28 AM

Hello Sinnathurai,

if DR1/2 cannot support a full table you need to filter and you should do it directly on IR1/2

on IR1/2

ip prefix-list only-default seq 5 permit 0.0.0.0/0

route-map toDR permit 10

match ip address prefix only-default

router bgp

neigh dr1 route-map toDR out

neigh dr2 route-map toDR out

note: filtering on DR1/2 inbound is inefficient because IR1/2 will try to advertise all prefixes just to have them dropped on DR1/2

as a security measure on DR1/2 you can implement the same filter inbound

on DR1/2 you keep to advertise the private ip subnets in order to ensure correct return traffic

this helps in having a dynamic routing between the 4 routers

I would not use static routes otherwise you will need to use IP SLA to control if next-hops are alive in a LAN environment (with switches in the middle)

Hope to help

Giuseppe

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎04-07-2010 06:28 AM

Hello Sinnathurai,

if DR1/2 cannot support a full table you need to filter and you should do it directly on IR1/2

on IR1/2

ip prefix-list only-default seq 5 permit 0.0.0.0/0

route-map toDR permit 10

match ip address prefix only-default

router bgp

neigh dr1 route-map toDR out

neigh dr2 route-map toDR out

note: filtering on DR1/2 inbound is inefficient because IR1/2 will try to advertise all prefixes just to have them dropped on DR1/2

as a security measure on DR1/2 you can implement the same filter inbound

on DR1/2 you keep to advertise the private ip subnets in order to ensure correct return traffic

this helps in having a dynamic routing between the 4 routers

I would not use static routes otherwise you will need to use IP SLA to control if next-hops are alive in a LAN environment (with switches in the middle)

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card