[j-nsp] apply-paths and address families
Andrew Gallo
akg1330 at gmail.com
Thu Apr 19 10:24:56 EDT 2018
Greetings:
Question about how folks are handling apply-paths with mixed v4 and v6
addresses. Specifically, if I want to use apply-paths to match all the
BGP neighbors configured, is the best practice to use a protocol
specific regex, or just match all neighbors? Does it matter if I match
a v6 address and use the prefix list in a v4 firewall filter?
I have three different apply-paths, one that matches v4 neighbors, one
v6 neighbors, and one all neighbors: prefix-list pf_BGP-IPV4 {
apply-path "protocols bgp group <*> neighbor <*[.]*>"; } prefix-list
pf_BGP-IPV6 { apply-path "protocols bgp group <*> neighbor <*[:]*>";
} prefix-list pf_BGP-all { apply-path "protocols bgp group <*>
neighbor <*>"; }
I can use pf_BGP-all in a filter in a family inet filter and a family
inet6 filter.
My question is- does it matter that a v6 address is in a prefix list in
a v4 filter?
Thank you.
More information about the juniper-nsp
mailing list