I thought up a theoretical route filtering scenario today at work that I wanted to run by other folks. Any thoughts would be greatly appreciated because I haven't been able to find anything analogous online.
Suppose I have two eBGP neighbor routers, one in AS 65520 that I manage for company ABC and one in AS 65530 managed by company XZY. My router is redistributing the BGP into EIGRP and vice versa. I am filtering the routes I receive and send out with route-maps. So I currently have the following:
route-map EIGRP-BGP permit 10 match ip address prefix-list ABC route-map ABC-out permit 10 match ip address prefix-list ABC route-map BGP-EIGRP permit 10 match ip address prefix-list XYZ set metric 10000000 100 255 1 9000 route-map XYZ-in permit 10 match ip address prefix-list XYZ ip prefix-list XYZ seq 10.0.0.0/16 ip prefix-list XYZ seq 10.1.0.0/16 ip prefix-list ABC seq 10.254.0.0/16 ip prefix-list ABC seq 10.255.0.0/16 router eigrp 100 router-id 192.168.1.1 redistribute bgp 65520 route-map BGP-EIGRP router bgp 65520 address-family ipv4 unicast redistribute eigrp 100 route-map EIGRP-BGP neighbor 172.16.1.2 remote-as 65530 address-family ipv4 unicast route-map XYZ-in in route-map ABC-out out soft-reconfiguration inbound always
So this way XYZ sees 10.254.0.0/16 and 10.255.0.0/16 from me, and ABC (me) sees 10.0.0.0/16 and 10.1.0.0/16 in our IGP from the other organization.
What if I want to send XYZ 10.253.0.0/16 minus just 10.253.122.0/24 ? What if I want to accept 10.2.0.0/16 minus just the host 10.2.0.100 (so the same question inbound)? Is the only way to essentially accept a range of everything minus the one host (like 10.2.0.1 - 10.2.0.99, 10.2.0.101 - 10.2.255.254) or can you filter the one host in a more elegant way with a route-map or another mechanism I'm not familiar with?
Thank you in advance!
No comments:
Post a Comment