[j-nsp] "low route" with BGP examples?

dmitri at nominet.org.uk dmitri at nominet.org.uk
Tue Oct 18 07:03:32 EDT 2005 

Hi,

It all works now. If anyone is interested here is the config on a router
which distributes flow routes:

routing-options {
    static {
        route 10.0.0.0/8 {
            discard;
            community 65001:101;
        }
        ...
        ...
    }
}
    flow {
        route test-flow-route {
            match source 10.0.0.1/32;
            then {
                community flow-route-community;
                discard;
            }
        }
        route test-flow-route-2 {
            match source 10.10.10.0/24;
            then {
                community flow-route-community-2;
                discard;
            }
        }
    }
}
protocols {
    bgp {
...
...
        family inet {
            unicast;
            flow;
        }
        group TEST {
            type external;
            description "Test peering with ref-gw";
            multihop {
                ttl 255;
            }
            export [ iana-reserved flow-route-policy deny-all ];
            peer-as 65002;
            neighbor 192.168.2.2;
            }
        }
    }
}
policy-options {
...
...
    policy-statement iana-reserved {
        term 1 {
            from community bogons-community;
            then {
                community add IANA;
                accept;
            }
        }
    }
    policy-statement flow-route-policy {
        term 1 {
            from community flow-route-community;
            then accept;
        }
    }
    policy-statement deny-all {
        then reject;
    }
    community IANA members no-export;
    community bogons-community members 65001:101;
    community flow-route-community members 65001:103;
    community flow-route-community-2 members 65001:104;
}

Regards
Dmitri

juniper-nsp-bounces at puck.nether.net wrote on 18/10/2005 11:25:17:

> Ok, I removed export statement from "protocols bgp group TEST" and flow 
> routes are
> now advertised:
> 
> show route advertising-protocol bgp 192.168.2.2
> 
> inetflow.0: 2 destinations, 2 routes (2 active, 0 holddown, 0 hidden)
>   Prefix                  Nexthop              MED     Lclpref    AS 
path
>   *,10.10.10/24/40
> *                         Self                                    I
>   *,10.0.0.1/48
> *                         Self                                    I
> 
> But as expected unicast prefixes are now not advertised.
> The question is how I advertise unicast prefixes at the same time?
> 
> Regards
> Dmitri
> 
> "Rafal Szarecki (WA/EPO)" <rafal.szarecki at ericsson.com> wrote on 
> 18/10/2005 10:34:23:
> 
> > Hi again.
> > 
> > Really Export policy is not needed at all.
> > 
> > But You have to remember that reciver of Flow-Spec NLRI implement 
> > route validation as per 
> > 
http://professional.juniper.net/roque/draft-marques-idr-flow-spec-02.txt
> > 
> > Rafal
> > 
> > > -----Original Message-----
> > > From: juniper-nsp-bounces at puck.nether.net 
> > > [mailto:juniper-nsp-bounces at puck.nether.net]On Behalf Of 
> > > Rafal Szarecki (WA/EPO)
> > > Sent: Tuesday, October 18, 2005 11:01 AM
> > > To: dmitri at nominet.org.uk; juniper-nsp at puck.nether.net
> > > Subject: RE: [j-nsp] "low route" with BGP examples?
> > > 
> > > 
> > > Dmitri,
> > > 
> > > This is like any other case with BGP. You has to:
> > > 1) creat flow route
> > > http://www.juniper.net/techpubs/software/junos/junos73/swconfi
> > > g73-routing/html/routing-tables-config52.html
> > > 
> > > 2)I belive you do not need to create export policy, but not sure ...
> > > 
> > > 3)Set MP-BGP to propagate flow AF:
> > > "set protocols bgp group group-name family inet flow"
> > > http://www.juniper.net/techpubs/software/junos/junos73/swconfi
> > > g73-routing/html/bgp-config47.html
> > > 
> > > I will try to chak in lab next few hour.
> > > 
> > > Rafa³ Szarecki JNCIE
> > > 
> > > skype me <callto://Rafal_Szarecki/> 
> > > 
> > > 
> > > 
> > > > -----Original Message-----
> > > > From: juniper-nsp-bounces at puck.nether.net 
> > > > [mailto:juniper-nsp-bounces at puck.nether.net]On Behalf Of 
> > > > dmitri at nominet.org.uk
> > > > Sent: Monday, October 17, 2005 3:34 PM
> > > > To: juniper-nsp at puck.nether.net
> > > > Subject: [j-nsp] "low route" with BGP examples?
> > > > 
> > > > 
> > > > Hi,
> > > > 
> > > > Has anyone implemented draft-marques-idr-flow-spec-03.txt?
> > > > I cannot figure out how to distribute "flow routes" via bgp
> > > > nor I was able to find such an example on juniper.net.
> > > > I'm trying to do the simplest thing: on a distributing router
> > > > I create a "flow route":
> > > > 
> > > > routing-options {
> > > >     flow {
> > > >         route test-flow-route {
> > > >             match source 10.0.0.1/32;
> > > >             then discard;
> > > >         }
> > > >     }
> > > > }
> > > > 
> > > > Now I want to distribute this "flow route" to another peering
> > > > neighbor. How do I configure the distributing router and the
> > > > peering neighbor to do this?
> > > > 
> > > > Regards
> > > > Dmitri
> > > > _______________________________________________
> > > > juniper-nsp mailing list juniper-nsp at puck.nether.net
> > > > http://puck.nether.net/mailman/listinfo/juniper-nsp
> > > > 
> > > 
> > > _______________________________________________
> > > juniper-nsp mailing list juniper-nsp at puck.nether.net
> > > http://puck.nether.net/mailman/listinfo/juniper-nsp
> > > 
> 
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/juniper-nsp

More information about the juniper-nsp mailing list