[c-nsp] BGP Config
Luan Nguyen
luan.nguyen at mci.com
Fri Aug 13 12:19:50 EDT 2004
a simplerer way would be:
router bgp 1234
neighbor 1.1.1.1 route-map DenyAll in (i think the default of no route-map
is deny all)
:)
Anyway, that config works fine...odd but it works.
show ip access-list does show it has matches (129 in my case)
debug bgp does show
Aug 13 11:59:39.027 EDT: BGP(0): 1.1.1.1 rcvd 10.1.1.0/24 -- DENIED due to:
route-map;
Aug 13 11:59:39.027 EDT: BGP(0): 1.1.1.1 rcvd 10.2.2.0/24 -- DENIED due to:
route-map;
show bgp neighbor 1.1.1.1 does show:
Inbound path policy configured
Route map for incoming advertisements is denyall
Sent Rcvd
Prefix activity: ---- ----
Prefixes Current: 1 0 (Consumes 6192 bytes)
Prefixes Total: 1 0
Implicit Withdraw: 0 0
Explicit Withdraw: 0 0
Used as bestpath: n/a 0
Used as multipath: n/a 0
Saved (soft-reconfig): n/a 129 (Consumes 6192 bytes)
Outbound Inbound
Local Policy Denied Prefixes: -------- -------
route-map: 0 129
AS_PATH loop: n/a 1
Total: 0 130
luan
----- Original Message -----
From: <Timothy.Hall at alltel.com>
To: <info at beprojects.com>; <cisco-nsp at puck.nether.net>
Sent: Friday, August 13, 2004 11:24 AM
Subject: RE: [c-nsp] BGP Config
> A simpler way:
>
> router bgp 1234
> neighbor 1.1.1.1 route-map DenyAll in
>
> route-map DenyAll deny 10
>
> tim
>
> -----Original Message-----
> From: cisco-nsp-bounces at puck.nether.net
> [mailto:cisco-nsp-bounces at puck.nether.net]On Behalf Of
> info at beprojects.com
> Sent: Friday, August 13, 2004 10:09 AM
> To: Cisco Nsp
> Subject: [c-nsp] BGP Config
>
>
> OK, I'm having a brain freeze at the moment and can't figure out why this
> won't work. I want to filter all incoming routes from a bgp neighbor and
I
> swear I've used this in the past. Does this look right, or am I missing
> something (I cut out all of the non-useful info).
>
>
> router bgp 1234
> neighbor 1.1.1.1 route-map DenyAll in
>
> ip access-list extended DENYALL
> deny ip any any
>
> route-map DenyAll permit 10
> match ip address DENYALL
>
>
> I apply this, then I clear the routes and they all show up again. I also
> tried using a numbered acl instead of a named acl and the same result.
> Thanks in advance.
>
> Peder
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
****************************************************************************
**************
> The information contained in this message, including attachments, may
contain
> privileged or confidential information that is intended to be delivered
only to the
> person identified above. If you are not the intended recipient, or the
person
> responsible for delivering this message to the intended recipient, ALLTEL
requests
> that you immediately notify the sender and asks that you do not read the
message or its
> attachments, and that you delete them without copying or sending them to
anyone else.
>
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list