I think that it's a documentation problem, you need to configure a
policy to export routes to the CE. Anyway, reading carefully:
On PE Router A, configure the following routing instance for VPN-A. In
this
example, Router A uses static routes to distribute routes to and from the
two CE routers to which it is connected.
How can you distribute routes with static routes to and from the CE? It
doesn't make sense.
JP wrote:
Joe,
I am fine with the fact that we have to export the route into ospf,
but does
this mean the configuration on page 97 is wrong? Because without the
export
policy, there is no routes will be learned from the remote PE.
Here is the configuration from page 97, it uses static, rip and ospf,
but
none of them has the export policy configured:
On PE Router A, configure the following routing instance for VPN-A.
In this
example, Router A uses static routes to distribute routes to and from
the
two CE routers to which it is connected.
[edit]
routing-instance {
VPN-A-Paris-Munich {
instance-type vrf;
interface so-6/0/0.0;
interface so-6/0/1.0;
route-distinguisher 65535:0;
vrf-import VPN-A-import;
vrf-export VPN-A-export;
routing-options {
static {
route 172.16.0.0/16 next-hop so-0/0/0.0;
route 172.17.0.0/16 next-hop so-6/0/1.0;
}
}
}
}
On PE Router C, configure the following routing instance for VPN-A.
In this
example, Router C uses BGP to distribute routes to and from the CE
router to
which it is connected.
[edit]
routing-instance {
VPN-A-Tokyo {
instance-type vrf;
interface ge-1/0/0.0;
route-distinguisher 65535:1;
vrf-import VPN-A-import;
vrf-export VPN-A-export;
protocols {
bgp {
group VPN-A-Site2 {
peer-as 1;
neighbor 10.12.1.2;
}
}
}
}
}
On PE Router A, configure the following routing instance for VPN-B.
In this
example, Router A uses OSPF to distribute routes to and from the CE
router
to which it is connected.
[edit]
routing-instance {
VPN-B-Madrid {
instance-type vrf;
interface ge-0/3/0.0;
route-distinguisher 65535:2;
vrf-import VPN-B-import;
vrf-export VPN-B-export;
protocols {
ospf {
area 0.0.0.0 {
interface ge-0/3/0;
}
}
}
}
}
On PE Router C, configure the following routing instance for VPN-B.
In this
example, Router C uses RIP to distribute routes to and from the CE
router to
which it is connected.
[edit]
routing-instance {
VPN-B-Osaka {
instance-type vrf;
interface at-1/2/0.0;
route-distinguisher 65535:3;
vrf-import VPN-B-import;
vrf-export VPN-B-export;
protocols {
rip {
group PE-C-to-VPN-B {
neighbor at-1/2/0;
}
}
}
}
}
Thanks
JP
""Joe Lin"" wrote in message
news:200203111950.OAA18311@xxxxxxxxxxxxxxxxx
> By default Juniper router does not export BGP routes to other
protocols.
>
> Therefore you have to export routes from BGP to OSPF/RIP. Kinda
silly
> if you ask me.
>
> Search this list or j-nsp list, there's better explanations.
>
> -Joe
>
>
> -----Original Message-----
> From: nobody@xxxxxxxxxxxxxx [mailto:nobody@xxxxxxxxxxxxxx] On
Behalf Of
> JP
> Sent: Sunday, March 10, 2002 11:43 PM
> To: juniper@xxxxxxxxxxxxxx
> Subject: Re: 2547bis related - more [9:1228]
>
> I am a bit confused here, on page 97 of the 5.2 VPN configuration
guide,
> the
> ospf for the CE under the VRF looks pretty straight , but on page
145,
> there is an export policy to redistribute PE learned BGP routes
into
> ospf so
> that the CE can learn these routes, why?
>
> Based on Henry's experience, looks like we do need that policy, but
it
> is
> kind of strange, I believe I am missing something here.
>
> Thanks
> JP
> ""Henry D."" wrote in message
> news:200202171655.LAA28168@xxxxxxxxxxxxxxxxx
> > Once I did that all started working as expected. Thanks !
> >
> > ""Harry Reynolds"" wrote in message
> > news:200202170242.VAA20790@xxxxxxxxxxxxxxxxx
> > > Try an export policy under the VRF's ospf instance that accepts
> > > protocol bgp. The default BGP policy is to accept BGP routes,
so
> such
> > > a policy is not needed when BGP is the PE-CE protocol.
> > >
> > >
> > >
> > > > -----Original Message-----
> > > > From: nobody@xxxxxxxxxxxxxx
> > > > [mailto:nobody@xxxxxxxxxxxxxx]On Behalf Of
> > > > Henry D.
> > > > Sent: Saturday, February 16, 2002 11:08 AM
> > > > To: juniper@xxxxxxxxxxxxxx
> > > > Subject: 2547bis related - more [9:1228]
> > > >
> > > >
> > > > I was doing some MPLS/VPN testing after being inspired by
previous
> > > > e-mails on this topic.
> > > >
> > > > Anyway, I seem to have an issue when using OSPF in between
> > > > PE and CE.
> > > > Simply, the routes are not showing up in CE routers that
> > > > should have been
> > > > learnt from PE. The routes are showing up in vrf and
> > > > bgp.l3vpn.0 tables
> > > > properly on the PE. When pointing CE's with default routes
> > > > to PE I can reach
> > > > appropriate
> > > > remote networks. However, as soon as I switch to BGP
> > > > between PE and CE
> > > > then all routes come up ok. Included is a relevant config on
my
> PE:
> > > >
> > > > routing-options {
> > > > router-id 10.0.0.3;
> > > > autonomous-system 2520;
> > > > }
> > > > protocols {
> > > > mpls {
> > > > interface fxp0.0;
> > > > interface fxp1.0;
> > > > interface fxp2.0;
> > > > }
> > > > bgp {
> > > > local-address 10.0.0.3;
> > > > group internal {
> > > > type internal;
> > > > family inet-vpn {
> > > > unicast;
> > > > }
> > > > neighbor 10.0.0.1 {
> > > > peer-as 2520;
> > > > }
> > > > }
> > > > }
> > > > ospf {
> > > > traffic-engineering;
> > > > export ospf;
> > > > area 0.0.0.0 {
> > > > interface fxp0.0;
> > > > interface fxp1.0;
> > > > }
> > > > }
> > > > ldp {
> > > > interface fxp0.0;
> > > > interface fxp1.0;
> > > > }
> > > > }
> > > > policy-options {
> > > > policy-statement ospf {
> > > > term 1 {
> > > > from protocol direct;
> > > > then accept;
> > > > }
> > > > }
> > > > policy-statement import {
> > > > term one {
> > > > from {
> > > > protocol bgp;
> > > > community VPN-1;
> > > > }
> > > > then accept;
> > > > }
> > > > term two {
> > > > then reject;
> > > > }
> > > > }
> > > > policy-statement export {
> > > > term one {
> > > > from protocol ospf;
> > > > then {
> > > > community add VPN-1;
> > > > accept;
> > > > }
> > > > }
> > > > term two {
> > > > from {
> > > > route-filter 10.1.13.2/32 exact;
> > > > }
> > > > then {
> > > > community add VPN-1;
> > > > accept;
> > > > }
> > > > }
> > > > term three {
> > > > then reject;
> > > > }
> > > > }
> > > > community VPN-1 members [ target:2520:1 origin:2520:1 ];
> > > > }
> > > > routing-instances {
> > > > VPN-1 {
> > > > instance-type vrf;
> > > > interface fxp2.0;
> > > > route-distinguisher 2520:1;
> > > > vrf-import import;
> > > > vrf-export export;
> > > > routing-options {
> > > > static {
> > > > route 10.1.13.2/32 next-hop 10.1.13.2;
> > > > }
> > > > }
> > > > protocols {
> > > > ospf {
> > > > domain-id 1.0.0.0;
> > > > area 0.0.0.1 {
> > > > interface fxp2.0;
> > > > }
> > > > }
> > > > }
> > > > }
> > > > }
> > > >
> > > > lab@xxx# run show route table bgp.l3vpn.0
> > > >
> > > > bgp.l3vpn.0: 2 destinations, 2 routes (2 active, 0
> > > > holddown, 0 hidden)
> > > > + = Active Route, - = Last Active, * = Both
> > > >
> > > > 2520:1:10.1.12.2/32
> > > > *[BGP/170] 01:46:01, localpref 100,
> > > > from 10.0.0.1
> > > > AS path: I
> > > > > to 10.1.2.1 via fxp1.0, Push 100003
> > > > 2520:1:200.200.200.0/30
> > > > *[BGP/170] 01:46:01, MED 20, localpref
> > > > 100, from 10.0.0.1
> > > > AS path: I
> > > > > to 10.1.2.1 via fxp1.0, Push 100003
> > > >
> > > > lab@xxx# run show route table VPN-1
> > > >
> > > > VPN-1.inet.0: 8 destinations, 8 routes (8 active, 0
> > > > holddown, 0 hidden)
> > > > + = Active Route, - = Last Active, * = Both
> > > >
> > > > 10.1.12.2/32 *[BGP/170] 00:09:50, localpref 100,
> > > > from 10.0.0.1
> > > > AS path: I
> > > > > to 10.1.2.1 via fxp1.0, Push 100003
> > > > 10.1.13.0/30 *[Direct/0] 00:09:26
> > > > > via fxp2.0
> > > > 10.1.13.1/32 *[Local/0] 04:32:16
> > > > Local via fxp2.0
> > > > 10.1.13.2/32 *[Static/5] 00:09:26
> > > > > to 10.1.13.2 via fxp2.0
> > > > 100.100.100.1/32 *[OSPF/150] 00:08:41, metric 20, tag 0
> > > > > to 10.1.13.2 via fxp2.0
> > > > 172.16.1.0/30 *[OSPF/150] 00:08:41, metric 20, tag 0
> > > > > to 10.1.13.2 via fxp2.0
> > > > 200.200.200.0/30 *[BGP/170] 00:09:50, MED 20, localpref
> > > > 100, from 10.0.0.1
> > > > AS path: I
> > > > > to 10.1.2.1 via fxp1.0, Push 100003
> > > > 224.0.0.5/32 *[OSPF/10] 00:09:50, metric 1
> > > >
> > > >
> > > > Am I missing anything ?
> > > http://www.groupstudy.com/list/juniper.html
> > http://www.groupstudy.com/list/juniper.html
> http://www.groupstudy.com/list/juniper.html
> http://www.groupstudy.com/list/juniper.html
http://www.groupstudy.com/list/juniper.html
http://www.groupstudy.com/list/juniper.html
--
Mario Sainz
msj03@xxxxxx
msainz@xxxxxxxxxxxxx
+34 91 744 46 00
[GroupStudy.com removed an attachment of type text/x-vcard which had a name
of msj03.vcf]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=9&i=1320&t=1228
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/juniper.html
