• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 396
  • Last Modified:

BGP community announcement?

Hi,

Realizing that I'm way out of my comfort zone, I had our bandwidth carrier do some troubleshooting for a possible network related issue to and from one of our managed server providers. Having done the troubleshooting end-to-end I wanted to make sure that there isn't any silliness on the BGP routes, etc.

Here is what the network person Above.net mentioned:
" We can have you apply the community 6461:5550  to your route announcements to us for the  209.*.*.*/24 block" ... "The other community that we could use is 6461:5000, which suppress the route to all peers, but I would suggest doing it to just L3 to start."

That being said, on the 6509, do I need to update the appropriate route-map to accomplish this?

Let me know if you need more details.
0
wsani
Asked:
wsani
1 Solution
 
Garry GlendownConsulting and Network/Security SpecialistCommented:
Yes, setting a BGP community for a prefix works like this (at least on IOS routers, 6500 should be similar):

- set a route-map to a BGP neighbor entry, e.g. "neighbox x.x.x.x route-map myRouteMap"
- on the route-map, do your matching, then set the community for the prefix:

route-map myRouteMap permit 10
  match ip address prefix-list PrefixListToBeTagged
  set community 6461:5500 additive

Open in new window


Instead of the prefix list, you could also use an access list ... that's about all you need to add the community ... then do a "clear ip bgp NEIGHBOR-IP out" to update the outgoing prefixex to your uplink ...
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now