VRF export policy with prefix-list

Post Reply
bela
Member
Posts: 1
Joined: 10 Jan 2019 07:50

VRF export policy with prefix-list

Post by bela » 10 Jan 2019 08:07

Hello Guys,

I would have a prefix list based vrf-export policy question to You. There is the 10.147.0.0/16 prefix in the VPRN routing table, what is received from a locally connected CE router via eBGP. I do not want to advertise only this exact prefix to remote PEs, therefore I have created a prefix-list with this prefix, and a vrf-export policy to reject only this prefix, and advertise all other prefixes via MP-BGP to remote PEs by using "default-action accept" statement.
Unfortunately after applying this policy as a vrf-export the PE does not advertise any prefix to remote PEs.

Can you check my syntax, please?

Thank you so much for your help in advance!

Regards,
Bela

prefix-list "man-vsrx-10-147"
prefix 10.147.0.0/16 exact
exit

policy-statement "vrf-exp-man"
entry 10
from
protocol bgp
prefix-list "man-vsrx-10-147"
exit
to
protocol bgp-vpn
exit
action reject
exit
default-action accept
exit
exit



*A:DGY-CORE-ALU-001>config>service>vprn# info
----------------------------------------------
description "MAN-VRF"
vrf-export "vrf-exp-man"
autonomous-system 65000
route-distinguisher 10.159.0.25:6
auto-bind-tunnel
resolution-filter
ldp
rsvp
exit
resolution filter
exit
vrf-target target:65000:6
interface "LB" create
address 6.6.6.3/32
loopback
exit
.
.
.
.

mivens
Member
Posts: 254
Joined: 28 Sep 2012 06:34

Re: VRF export policy with prefix-list

Post by mivens » 12 Jan 2019 11:58

You could try adding a second entry that matches all but still has "to protocol bgp-vpn" so that what's matched gets redistributed i.e.

Code: Select all

              policy-statement "vrf-exp-man"
                  entry 10
                      from
                          protocol bgp
                          prefix-list "man-vsrx-10-147"
                      exit
                     action reject
                 exit
                 entry 20
                     from
                         protocol bgp
                     exit
                     to
                        protocol bgp-vpn
                     exit
                     action accept
                 exit
             exit

Post Reply

Return to “7210 SAS”