leblanc
asked on
BGP routing table
I advertised several internal subnets (10.10.1.0/24, 10.10.2.0/24, & 10.10.3.0/24) to my provider. I have a Cisco router and I am trying to understand the sh ip route with BGP. I see my subnets as internal but I also see 10.10.0.0/16 with path AS as 65003 and next hop the interface of the other router. So does it mean that the other router advertises the 10.10.0.0/16 to me?
My AS is 65010.
Network Next Hop Metric LocPrf Weight Path
*> 0.0.0.0/0 10.10.200.1 0 0 65003 13999 ?
*> 10.10.0.0/16 10.10.200.1 0 0 65003 ?
*> 10.10.1.0/24 0.0.0.0 100 32768 i
*> 10.10.2.0/24 0.0.0.0 100 32768 i
*> 10.10.3.0/24 0.0.0.0 100 32768 i
My AS is 65010.
Network Next Hop Metric LocPrf Weight Path
*> 0.0.0.0/0 10.10.200.1 0 0 65003 13999 ?
*> 10.10.0.0/16 10.10.200.1 0 0 65003 ?
*> 10.10.1.0/24 0.0.0.0 100 32768 i
*> 10.10.2.0/24 0.0.0.0 100 32768 i
*> 10.10.3.0/24 0.0.0.0 100 32768 i
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
In the first post you said it is a Cisco, and now a FortiGate. Are both involved?
ASKER
Sorry for the confusion. It is actually a Fortigate.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes. I told them to check and they say they do not advertise that network. So we have a leak route somewhere in their router then. I am supposed to advertise that network because it is from my LAN.
I assume this is an MPLS VPN, where you also have other sites.
Is it not possible that you are advertising that /16 from another site?
Did you try to clear the BGP session, and see if the /16 is there again when the session comes back up?
If it is, for sure the provider will be able to see where they are getting it from.
Is it not possible that you are advertising that /16 from another site?
Did you try to clear the BGP session, and see if the /16 is there again when the session comes back up?
If it is, for sure the provider will be able to see where they are getting it from.
ASKER
This is a new site with a new subnet on MPLS VPN. We did clear the session several times. I will reopen the ticket.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Please post the BGP portion of your router configuration.
ASKER
The problem was their interface was configured as /16 instead of /30.
I guess that would do it :-)
ASKER