implements a new feature: "BGP Allow list." This feature allows us to control which IP prefixes are going to be advertised via ebgp from the routes received from EBGP neighbors.
40 lines
927 B
Plaintext
40 lines
927 B
Plaintext
!
|
|
! template: bgpd/templates/general/policies.conf.j2
|
|
!
|
|
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V4 permit 65535
|
|
set community no-export additive
|
|
!
|
|
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V6 permit 65535
|
|
set community no-export additive
|
|
!
|
|
route-map FROM_BGP_PEER_V4 permit 2
|
|
call ALLOW_LIST_DEPLOYMENT_ID_0_V4
|
|
on-match next
|
|
!
|
|
route-map FROM_BGP_PEER_V6 permit 2
|
|
call ALLOW_LIST_DEPLOYMENT_ID_0_V6
|
|
on-match next
|
|
!
|
|
route-map FROM_BGP_PEER_V4 permit 100
|
|
!
|
|
route-map TO_BGP_PEER_V4 permit 100
|
|
!
|
|
route-map FROM_BGP_PEER_V6 permit 1
|
|
set ipv6 next-hop prefer-global
|
|
!
|
|
route-map FROM_BGP_PEER_V6 permit 100
|
|
!
|
|
route-map TO_BGP_PEER_V6 permit 100
|
|
!
|
|
route-map FROM_BGP_PEER_V4_INT permit 2
|
|
set originator-id 10.10.10.10
|
|
!
|
|
route-map FROM_BGP_PEER_V6_INT permit 1
|
|
set ipv6 next-hop prefer-global
|
|
!
|
|
route-map FROM_BGP_PEER_V6_INT permit 2
|
|
set originator-id 10.10.10.10
|
|
!
|
|
! end of template: bgpd/templates/general/policies.conf.j2
|
|
!
|