[j-nsp] Communitys and partial routes
Jonas Frey
jf at probe-networks.de
Fri May 28 14:50:11 EDT 2004
Hi,
thanks alot for everyone who replied!
I think i got it working.
Regards,
Jonas
On Fri, 2004-05-28 at 20:18, Pedro Roque Marques wrote:
> Jonas Frey writes:
>
> > Hello, i am looking for a way to allow a directly connected customer
> > (static routing) only access to some routes which have been marked
> > with communites. I've looked through the docs but cant find any way
> > to do this. Is there even a way to get such things done?
>
> So, the customer default routes to you and you want to give him a
> routing view which only includes a selected set of routes ?
>
> you can try the following:
>
> routing-options {
> instance-import master-import;
> }
> routing-instances {
> restricted-customer {
> instance-type virtual-router;
> interface <customer>;
> routing-options {
> instance-import restrict-import;
> static {
> route x.x.x.x next-hop y.y.y.y;
> }
> }
> }
> }
>
>
> policy-options {
> master-import {
> term a {
> from instance restricted-customer;
> then accept;
> }
> }
> restrict-import {
> term a {
> from {
> instance master;
> comunity <something>;
> }
> then accept;
> }
> }
> }
>
> This is just an example:
> - you could leave the interface in the master instance and then just
> FBF the customer traffic to the restricted instance, saving your self
> the trouble of the master-import policy.
More information about the juniper-nsp
mailing list