Simple BGP configuration to test
Hi all! I configured the BGP peer to test and the sessions are UP but it does not propagate the networks. I tried all the options that I know, but it does not work yet. I don't know if the error is my installation on Rocky Linux or just my BGP syntax. *FRRouting 9.0.1Kernel 5.14.0-362.8.1.el9_3.x86_64Rocky Linux 9.3* */etc/sysctl.conf:net.ipv4.ip_forward = 1net.ipv6.conf.all.forwarding = 1* R01# show run Building configuration... Current configuration: ! frr version 9.0.1 frr defaults traditional hostname R01 log syslog informational service integrated-vtysh-config ! interface eth2 ip address 10.10.20.1/30 exit ! interface eth3 ip address 10.10.30.1/30 exit ! router bgp 65100 bgp router-id 172.10.20.1 bgp log-neighbor-changes no bgp network import-check neighbor 10.10.20.2 remote-as 65200 neighbor 10.10.20.2 description ASN65200 neighbor 10.10.30.2 remote-as 65300 neighbor 10.10.30.2 description ASN65300 ! address-family ipv4 unicast network 172.10.20.0/30 network 192.168.100.0/24 redistribute connected neighbor 10.10.20.2 soft-reconfiguration inbound neighbor 10.10.20.2 prefix-list ASN65200-IN in neighbor 10.10.20.2 prefix-list ASN65200-OUT out exit-address-family exit ! access-list ANS65200-IN seq 5 permit 0.0.0.0/0 access-list ANS65200-OUT seq 5 permit 192.168.100.0/24 ! end R01# [root@ASN65200 ~]# cat /etc/frr/frr.conf frr version 9.0.1 frr defaults traditional hostname ASN65200 log syslog informational service integrated-vtysh-config ! interface eth2 ip address 10.10.20.2/30 exit ! interface eth3 ip address 10.20.40.2/30 exit ! interface lo exit ! interface eth0 exit ! router bgp 65200 bgp router-id 2.2.2.2 bgp log-neighbor-changes no bgp network import-check neighbor 10.10.20.1 remote-as 65100 neighbor 10.20.40.1 remote-as 65400 ! address-family ipv4 unicast network 2.2.2.2/32 redistribute connected neighbor 10.10.20.1 default-originate neighbor 10.10.20.1 soft-reconfiguration inbound neighbor 10.10.20.1 prefix-list ANS65100-IN in neighbor 10.10.20.1 prefix-list ANS65100-OUT out exit-address-family exit ! access-list ASN65100-IN seq 5 permit 0.0.0.0/0 access-list ASN65100-OUT seq 5 permit 2.2.2.2/32 ! [root@ASN65200 ~]# R01# show ip bgp summary IPv4 Unicast Summary (VRF default): BGP router identifier 172.10.20.1, local AS number 65100 vrf-id 0 BGP table version 4 RIB entries 7, using 1344 bytes of memory Peers 2, using 41 KiB of memory Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd PfxSnt Desc 10.10.20.2 4 65200 28 25 4 0 0 00:19:25 (Policy) (Policy) ASN65200 10.10.30.2 4 65300 0 0 0 0 0 never Active 0 ASN65300 Total number of neighbors 2 R01# do show ip bgp neighbors 10.10.20.2 received BGP table version is 4, local router ID is 172.10.20.1, vrf id 0 Default local pref 100, local AS 65100 Status codes: s suppressed, d damped, h history, * valid, > best, = multipath, i internal, r RIB-failure, S Stale, R Removed Nexthop codes: @NNN nexthop's vrf id, < announce-nh-self Origin codes: i - IGP, e - EGP, ? - incomplete RPKI validation codes: V valid, I invalid, N Not found Network Next Hop Metric LocPrf Weight Path *> 0.0.0.0/0 10.10.20.2 0 0 65200 i Total number of prefixes 1 (1 filtered) R01# Any tips? -- Att, Jorge Visentini +55 55 98432-9868
On Mon, 27 Nov 2023 at 17:51, Jorge Visentini <jorgevisentini@gmail.com> wrote:
I configured the BGP peer to test and the sessions are UP but it does not propagate the networks. I tried all the options that I know, but it does not work yet.
I don't know if the error is my installation on Rocky Linux or just my BGP syntax.
Have you read this section in the docs? https://docs.frrouting.org/en/stable-9.0/bgp.html#clicmd-bgp-ebgp-requires-p... prefix-list != route-map ~= "When the incoming or outgoing filter is missing you will see '(Policy)' sign"
I adjusted the configuration to use route-map with prefix-list and it worked. Thanks a lot! Em seg., 27 de nov. de 2023 às 16:20, <netravnen+froglist@gmail.com> escreveu:
On Mon, 27 Nov 2023 at 17:51, Jorge Visentini <jorgevisentini@gmail.com> wrote:
I configured the BGP peer to test and the sessions are UP but it does not propagate the networks. I tried all the options that I know, but it does not work yet.
I don't know if the error is my installation on Rocky Linux or just my BGP syntax.
Have you read this section in the docs?
https://docs.frrouting.org/en/stable-9.0/bgp.html#clicmd-bgp-ebgp-requires-p...
prefix-list != route-map ~= "When the incoming or outgoing filter is missing you will see '(Policy)' sign"
-- Att, Jorge Visentini +55 55 98432-9868
I guess you need this: ip route 172.10.20.0/30 Null0 ip route 192.168.100.0/24 Null0 Em 27/11/2023 13:51, Jorge Visentini escreveu:
Hi all!
I configured the BGP peer to test and the sessions are UP but it does not propagate the networks. I tried all the options that I know, but it does not work yet.
I don't know if the error is my installation on Rocky Linux or just my BGP syntax.
*FRRouting 9.0.1 Kernel 5.14.0-362.8.1.el9_3.x86_64 Rocky Linux 9.3*
*/etc/sysctl.conf: net.ipv4.ip_forward = 1 net.ipv6.conf.all.forwarding = 1*
R01# show run Building configuration...
Current configuration: ! frr version 9.0.1 frr defaults traditional hostname R01 log syslog informational service integrated-vtysh-config ! interface eth2 ip address 10.10.20.1/30 <http://10.10.20.1/30> exit ! interface eth3 ip address 10.10.30.1/30 <http://10.10.30.1/30> exit ! router bgp 65100 bgp router-id 172.10.20.1 bgp log-neighbor-changes no bgp network import-check neighbor 10.10.20.2 remote-as 65200 neighbor 10.10.20.2 description ASN65200 neighbor 10.10.30.2 remote-as 65300 neighbor 10.10.30.2 description ASN65300 ! address-family ipv4 unicast network 172.10.20.0/30 <http://172.10.20.0/30> network 192.168.100.0/24 <http://192.168.100.0/24> redistribute connected neighbor 10.10.20.2 soft-reconfiguration inbound neighbor 10.10.20.2 prefix-list ASN65200-IN in neighbor 10.10.20.2 prefix-list ASN65200-OUT out exit-address-family exit ! access-list ANS65200-IN seq 5 permit 0.0.0.0/0 <http://0.0.0.0/0> access-list ANS65200-OUT seq 5 permit 192.168.100.0/24 <http://192.168.100.0/24> ! end R01#
[root@ASN65200 ~]# cat /etc/frr/frr.conf frr version 9.0.1 frr defaults traditional hostname ASN65200 log syslog informational service integrated-vtysh-config ! interface eth2 ip address 10.10.20.2/30 <http://10.10.20.2/30> exit ! interface eth3 ip address 10.20.40.2/30 <http://10.20.40.2/30> exit ! interface lo exit ! interface eth0 exit ! router bgp 65200 bgp router-id 2.2.2.2 bgp log-neighbor-changes no bgp network import-check neighbor 10.10.20.1 remote-as 65100 neighbor 10.20.40.1 remote-as 65400 ! address-family ipv4 unicast network 2.2.2.2/32 <http://2.2.2.2/32> redistribute connected neighbor 10.10.20.1 default-originate neighbor 10.10.20.1 soft-reconfiguration inbound neighbor 10.10.20.1 prefix-list ANS65100-IN in neighbor 10.10.20.1 prefix-list ANS65100-OUT out exit-address-family exit ! access-list ASN65100-IN seq 5 permit 0.0.0.0/0 <http://0.0.0.0/0> access-list ASN65100-OUT seq 5 permit 2.2.2.2/32 <http://2.2.2.2/32> ! [root@ASN65200 ~]#
R01# show ip bgp summary
IPv4 Unicast Summary (VRF default): BGP router identifier 172.10.20.1, local AS number 65100 vrf-id 0 BGP table version 4 RIB entries 7, using 1344 bytes of memory Peers 2, using 41 KiB of memory
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd PfxSnt Desc 10.10.20.2 4 65200 28 25 4 0 0 00:19:25 (Policy) (Policy) ASN65200 10.10.30.2 4 65300 0 0 0 0 0 never Active 0 ASN65300
Total number of neighbors 2
R01# do show ip bgp neighbors 10.10.20.2 received BGP table version is 4, local router ID is 172.10.20.1, vrf id 0 Default local pref 100, local AS 65100 Status codes: s suppressed, d damped, h history, * valid, > best, = multipath, i internal, r RIB-failure, S Stale, R Removed Nexthop codes: @NNN nexthop's vrf id, < announce-nh-self Origin codes: i - IGP, e - EGP, ? - incomplete RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path *> 0.0.0.0/0 <http://0.0.0.0/0> 10.10.20.2 0 0 65200 i
Total number of prefixes 1 (1 filtered) R01#
Any tips? -- Att, Jorge Visentini +55 55 98432-9868
_______________________________________________ frog mailing list frog@lists.frrouting.org https://lists.frrouting.org/listinfo/frog
participants (3)
-
Jorge Visentini -
Leonardo Porto -
netravnen+froglist@gmail.com