Lab6 BGP Attribute
- Jean-luc KRIKER
Owned by Jean-luc KRIKER
Part 2 |
show bgp route + hidden routes Expand source
lab@vSRX-1> show bgp summary Groups: 3 Peers: 7 Down peers: 0 Table Tot Paths Act Paths Suppressed History Damp State Pending inet.0 22 13 0 0 0 0 Peer AS InPkt OutPkt OutQ Flaps Last Up/Dwn State|#Active/Received/Accepted/Damped... 172.18.1.1 65510 79 70 0 0 30:16 Establ inet.0: 9/9/9/0 192.168.2.1 64700 112 118 0 0 47:15 Establ inet.0: 0/9/9/0 >>>>> 0/9/9/0 ---- Active= 0 , then Rx=9 !!!! ============================================================== lab@vSRX-1> show route protocol bgp hidden 10.4.0.0/21 inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) + = Active Route, - = Last Active, * = Both 10.4.0.0/21 [BGP/170] 00:11:48, localpref 100, from 192.168.2.1 AS path: 65520 I, validation-state: unverified Unusable >>>>> 9 hidden >>>>> AS_Path : 65520 ( shortest , should had been selected ) ========================================================= lab@vSRX-1> show route protocol bgp 10.4.0.0/21 inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) + = Active Route, - = Last Active, * = Both 10.4.0.0/21 *[BGP/170] 00:12:07, localpref 100 AS path: 65510 65515 65520 I, validation-state: unverified > to 172.18.1.1 via ge-0/0/2.0 ========================================================= vSRX-1_vr.inet.0: 26 destinations, 35 routes (17 active, 0 holddown, 18 hidden) |
part 2 |
show Rx routes Expand source
lab@vSRX-1> show route receive-protocol bgp 192.168.2.1 hidden table inet.0 inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) Prefix Nexthop MED Lclpref AS path 10.4.0.0/21 172.18.2.1 100 65520 I 10.8.0.0/21 172.18.2.1 100 65520 65515 26749 3356 I 10.11.0.0/21 172.18.2.1 100 65520 65515 65510 65510 65510 I 10.63.4.0/22 172.18.2.1 100 65520 65515 I 10.68.8.0/22 172.18.2.1 100 65520 65515 65510 I 10.77.28.0/22 172.18.2.1 100 65520 65515 65510 65510 26749 I 10.87.48.0/22 172.18.2.1 100 65520 65520 I 10.92.12.0/22 172.18.2.1 100 65520 65515 3356 9888 I 10.158.56.0/22 172.18.2.1 100 65520 65520 65520 65520 1123 I lab@vSRX-1> show route receive-protocol bgp 192.168.2.1 hidden table inet.0 10.4.0.0/21 detail inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) 10.4.0.0/21 (2 entries, 1 announced) Accepted Nexthop: 172.18.2.1 Localpref: 100 AS path: 65520 I Communities: 65520:100 65520:1000 ===================================================================== lab@vSRX-1> show route protocol bgp hidden table inet.0 10.4.0.0/21 detail inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) 10.4.0.0/21 (2 entries, 1 announced) BGP Preference: 170/-101 Next hop type: Unusable, Next hop index: 0 Address: 0x952dee4 Next-hop reference count: 27 State: <Hidden Int Ext> Inactive reason: Unusable path Local AS: 64700 Peer AS: 64700 Age: 28:59 Validation State: unverified Task: BGP_64700.192.168.2.1 AS path: 65520 I Communities: 65520:100 65520:1000 Accepted Localpref: 100 Router ID: 192.168.2.1 >>>>> Next hop type: Unusable >>> check the BGP_NH ===================================================================== lab@vSRX-1> show route 10.4.0.0/21 hidden table inet.0 inet.0: 31 destinations, 40 routes (31 active, 0 holddown, 9 hidden) + = Active Route, - = Last Active, * = Both 10.4.0.0/21 [BGP/170] 00:30:37, localpref 100, from 192.168.2.1 AS path: 65520 I, validation-state: unverified Unusable ========================================================== No route to BGP_NH lab@vSRX-1> show route 172.18.2.1 lab@vSRX-1> show route 172.18.2.1 hidden ========================================================== Need to look into vSRX2: -------------------------- change the NH-self lab@vSRX-2> show configuration policy-options | display set set policy-options policy-statement del-comm then community delete all set policy-options policy-statement export-isp-65510 term 1 from protocol static set policy-options policy-statement export-isp-65510 term 1 then accept set policy-options policy-statement export-isp-65520 term 1 from protocol static set policy-options policy-statement export-isp-65520 term 1 then accept set policy-options policy-statement export-static term 1 from protocol static set policy-options policy-statement export-static term 1 then accept set policy-options policy-statement nhs term 1 then next-hop self set policy-options community all members .* lab@vSRX-2> show configuration protocols bgp group my-int-group | display set set protocols bgp group my-int-group type internal set protocols bgp group my-int-group local-address 192.168.2.1 set protocols bgp group my-int-group export nhs set protocols bgp group my-int-group neighbor 192.168.1.2 set protocols bgp group my-int-group neighbor 192.168.1.1 set protocols bgp group my-int-group neighbor 192.168.2.2 ========================================================== And on vSRX1: lab@vSRX-1> show configuration policy-options | display set set policy-options policy-statement export-static term 1 from protocol static set policy-options policy-statement export-static term 1 then accept set policy-options policy-statement nhs term 1 then next-hop self lab@vSRX-1> show configuration protocols bbg ^ syntax error. lab@vSRX-1> show configuration protocols bgp group my-ext-group | display set set protocols bgp group my-ext-group type external set protocols bgp group my-ext-group peer-as 65510 set protocols bgp group my-ext-group neighbor 172.18.1.1 |
part 3 |
show iBGP routes Expand source
lab@vSRX-1> show route protocol bgp aspath-regex "()" table inet.0 inet.0: 31 destinations, 37 routes (31 active, 0 holddown, 0 hidden) + = Active Route, - = Last Active, * = Both 10.67.192.0/21 *[BGP/170] 01:13:56, localpref 100, from 192.168.1.2 AS path: I, validation-state: unverified > to 172.20.113.10 via lt-0/0/0.0 10.67.200.0/21 *[BGP/170] 01:14:14, localpref 100, from 192.168.2.2 AS path: I, validation-state: unverified > to 172.20.77.2 via ge-0/0/1.0 10.69.176.0/21 *[BGP/170] 01:13:56, localpref 100, from 192.168.1.2 AS path: I, validation-state: unverified > to 172.20.113.10 via lt-0/0/0.0 10.69.184.0/21 *[BGP/170] 01:14:14, localpref 100, from 192.168.2.2 AS path: I, validation-state: unverified > to 172.20.77.2 via ge-0/0/1.0 lab@vSRX-1> |