Hey there, I have a question regarding BGP community matching on a Mikrotik, I have the following configuration: 0 chain=peering-out bgp-communities=ASN:XXX invert-match=no action=accept set-bgp-prepend-path="" 1 chain=peering-out protocol=bgp bgp-communities=ASN:XXX,ASN:ASN invert-match=no action=accept set-bgp-prepend-path="" 2 chain=peering-out invert-match=no action=discard set-bgp-prepend-path="" I am trying to match all routes, if they have ASN:XXX in one of the communities. For example, This is matched: 0 ADb dst-address=X.X.71.0/24 gateway=X.X.137.252 gateway-status=X.X.137.252 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-as-path="132839" bgp-local-pref=400 bgp-origin=igp bgp-communities=ASN:XXX received-from=BDR-1-3 This is not: 0 ADb dst-address=X.X.31.0/24 gateway=221.121.137.255 gateway-status=221.121.137.255 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-local-pref=100 bgp-med=0 bgp-origin=igp bgp-communities=ASN:XXX,ASN:ASN received-from=SW-1-1 Any ideas? Cheers Nick
Your second chain entry has 'protocol=bgp' Tried removing it, then doing a soft clear?
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Nick Pratley Sent: Friday, 13 February 2015 6:53 PM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] BGP Community Matching
Hey there,
I have a question regarding BGP community matching on a Mikrotik,
I have the following configuration:
0 chain=peering-out bgp-communities=ASN:XXX invert-match=no action=accept set-bgp-prepend-path="" 1 chain=peering-out protocol=bgp bgp-communities=ASN:XXX,ASN:ASN invert-match=no action=accept set-bgp-prepend-path="" 2 chain=peering-out invert-match=no action=discard set-bgp-prepend-path=""
I am trying to match all routes, if they have ASN:XXX in one of the communities.
For example,
This is matched: 0 ADb dst-address=X.X.71.0/24 gateway=X.X.137.252 gateway-status=X.X.137.252 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-as-path="132839" bgp-local-pref=400 bgp-origin=igp bgp-communities=ASN:XXX received-from=BDR-1-3
This is not: 0 ADb dst-address=X.X.31.0/24 gateway=221.121.137.255 gateway-status=221.121.137.255 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-local-pref=100 bgp-med=0 bgp-origin=igp bgp-communities=ASN:XXX,ASN:ASN received-from=SW-1-1
Any ideas?
Cheers Nick _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Thanks Tim. I'll try it quickly now, but honestly I thought I had it in the first entry, to triple confirm that I was not redistributing OSPF. The routes I am advertising are learnt from BGP, so would leaving protocol=bgp in there be a bad thing? Unless I have the wrong idea of what that does. Cheers, Nick On 13 Feb 2015 9:22 pm, "Tim Warnock" <timoid@timoid.org> wrote:
Your second chain entry has 'protocol=bgp'
Tried removing it, then doing a soft clear?
-----Original Message----- From: Public [mailto:public-bounces@talk.mikrotik.com.au] On Behalf Of Nick Pratley Sent: Friday, 13 February 2015 6:53 PM To: public@talk.mikrotik.com.au Subject: [MT-AU Public] BGP Community Matching
Hey there,
I have a question regarding BGP community matching on a Mikrotik,
I have the following configuration:
0 chain=peering-out bgp-communities=ASN:XXX invert-match=no action=accept set-bgp-prepend-path="" 1 chain=peering-out protocol=bgp bgp-communities=ASN:XXX,ASN:ASN invert-match=no action=accept set-bgp-prepend-path="" 2 chain=peering-out invert-match=no action=discard set-bgp-prepend-path=""
I am trying to match all routes, if they have ASN:XXX in one of the communities.
For example,
This is matched: 0 ADb dst-address=X.X.71.0/24 gateway=X.X.137.252 gateway-status=X.X.137.252 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-as-path="132839" bgp-local-pref=400 bgp-origin=igp bgp-communities=ASN:XXX received-from=BDR-1-3
This is not: 0 ADb dst-address=X.X.31.0/24 gateway=221.121.137.255 gateway-status=221.121.137.255 recursive via X.X.137.17 VLAN2803 distance=200 scope=40 target-scope=30 bgp-local-pref=100 bgp-med=0 bgp-origin=igp bgp-communities=ASN:XXX,ASN:ASN received-from=SW-1-1
Any ideas?
Cheers Nick _______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
_______________________________________________ Public mailing list Public@talk.mikrotik.com.au http://talk.mikrotik.com.au/mailman/listinfo/public_talk.mikrotik.com.au
Hey Tim / List, This was sorted! I had 2x routes in the tables for each prefix that was not working - one in OSPF and one in BGP. Changing the distance on the BGP routes coming in the iBGP sessions to lower than OSPF (110) has resolved, as BGP routes are now the best in the tables. Cheers, Nick
participants (2)
-
Nick Pratley
-
Tim Warnock