Re: OpenBGPD not installing routes that happen to originate from the same ASN in another location into the RIB

Thu, 28 Aug 2014 03:05:50 -0700 

Peter,
The prefix doesn't actually fall under that, I just simply replaced the first octet of it to mask what it actually is. 

It's actually a publicly routable prefix allocated from ARIN.

Apologies if it had been confusing.

On 8/28/2014 午後 07:02, Peter Hessler wrote:

deny from any prefix 10.0.0.0/8 prefixlen >= 8          # private space 
[RFC1918]
?


On 2014 Aug 28 (Thu) at 18:17:34 +0900 (+0900), Paul S. wrote:
:Hi guys,
:
:We've been testing OpenBGPd + OpenBSD as an edge router for some time and are
:pretty impressed with what it can do.
:
:Earlier today, however, I discovered that routes that I'm announcing under
:the same ASN (in another location) are being received and put into the RIB --
:but never into the kernel's FIB.
:
:fib-update is not the issue since I can see that prefixes that are from
:external ASNs happen to be working fine,
:
:# bgpctl sh ip bgp 8.8.8.0/24
:flags: * = Valid, > = Selected, I = via IBGP, A = Announced, S = Stale
:origin: i = IGP, e = EGP, ? = Incomplete
:
:flags destination          gateway          lpref   med aspath origin
:*>    8.8.8.0/24           x.218.212.x     100     0 3491 15169 i
:*     8.8.8.0/24           x.88.197.x       100 12040 174 15169 i
:
:So to say, my locally configured OpenBGPD instance has ASN n, and is refusing
:to install routes that are also from ASN n (but announced in a different
:location and received through ebgp from a upstream)
:
:Example of one such network,
:
:# bgpctl show ip bgp 10.251.113.0
:flags: * = Valid, > = Selected, I = via IBGP, A = Announced, S = Stale
:origin: i = IGP, e = EGP, ? = Incomplete
:
:flags destination          gateway          lpref   med aspath origin
:      10.251.112.0/21     x.218.212.x     100     0 3491 n n i
:      10.251.112.0/21     x.88.197.x       100 41051 174 n i
:
:(I've chosen to obfuscate the actual ASN / prefix, but they're both visible
:on the global table and the nexthop / gws are also both reachable. n is also
:configured as the ASN for this instance.)
:
:Have I missed some sort of knob in the OpenBGPD bgpd.conf manpage? I tried
:looking through it for FIB filtering or similar, but couldn't find anything.
:Googling did not turn up anything either
:
:My configuration (stripping out the macros and networks) may be seen entirely
:at http://paste.ee/p/unTWC#XKvmhqtFCcHZ4TQlFn8VTZMpUfs6I9I5
:
:Thank you!
:
























					Reply via email to