Pete's Packet

Limitless

  • Catagories

  • Global visitors

    free counters

  • RSS CCIE Jobs – Metro NY area

    • Wide Area Network Administrator
    • Sr. Network Engineer Cisco - Somerset NJ or Jersey City
      Confidential Company Somerset, NJJob description: ...industry knowledge* Excellent communication and interpersonal skills* Excellent customer presentation skills** Cisco Certifications preferred (CCNA, CCNP,CCIE).We are committed to a policy of Equal Employment opportunity and will not discriminate on any legally...
    • Architect
      Tekmark Global Solutions LLC New York, NYJob description: ...6) Visio drawings 7) Voice/data convergence 8) Data center design 9) Firewalls/security 10) CCIE Written Roles and Responsibilities: -Provide Network Architectural direction to various client outsourced customer accounts-Works with...
    • Senior CISCO Engineer
      Diverse Lynx Llc Union, NJ

Archive for April 7th, 2009

BGP: regular expression

Posted by Peter Kurdziel on April 7, 2009

filter networks that originated in AS 300

ip as-path access-list 1 deny _300$
ip as-path access-list 1 permit .*
!
router bgp 100
neighbor 10.1.12.2 filter-list 1 in

filter networks that traveresed through AS 300

ip as-path access-list 1 deny _300_
ip as-path access-list 1 permit .*
!
router bgp 100
neighbor 10.1.12.2 filter-list 1 in

filter networks that originated in AS 300

ip as-path access-list 1 deny ^$
ip as-path access-list 1 permit .*

neighbor 10.1.23.2 filter-list 1 out

filter networks from neigboring AS 200

ip as-path access-list 1 deny _200_300$
ip as-path access-list 1 permit .*
!
ip as-path access-list  1 deny ^200$
ip as-path access-list  1 per .*

filter all prefixes from my directly connected neighbors

ip as-path acc 1 deny ^[0-9]+$
ip as-path acc 1 per .*

filter all prefixes that originated in AS 300 and traversed through AS 200
ip as-path access-list 1 deny _200_300$
ip as-path access-list 1 permit .*

Posted in BGP, Routing & Switching Lab | Leave a Comment »

BGP: outbound route filtering

Posted by Peter Kurdziel on April 7, 2009

outbound route filtering

You configure a prefix list on R1 but you want R2 and R3 to actually perform the filtering.

So R1 sends and R2 & R3 receive.

r1
ip prefix …….
nei x.x.x.x prefix ??? in
neighbor x.x.x.x capability orf prefix-list send

r2/r3
neighbor x.x.x.x capability orf prefix-list receive

Posted in BGP, Routing & Switching Lab | Leave a Comment »

BGP: Filtering networks

Posted by Peter Kurdziel on April 7, 2009

filtering networks

Don’t forget the permit any for acl’s or prefix-lists!
1.
acl 1 deny x.x.x.x y.y.y.y
acl 1 per any

2.
ip prefix 1 deny x.x.x.x/x
ip prefix 1 perm 0.0.0.0/0 le 32

3.
acl 2 deny x.x.x.x y.y.y.y
acl 2 per any

route-map BLOCK2 per 10
matc ip 2

4.
acl 2 per x.x.x.x y.y.y.y

route-map BLOCK2 deny 10
matc ip 2
route-map BLOCK2 per 20

then apply to the neighbors

Posted in BGP, Routing & Switching Lab | Leave a Comment »

 
Follow

Get every new post delivered to your Inbox.