L3VPN route leakage

18/02/2013 20:18

 

 

PE#sh ip bgp vpnv4 all 10.0.1.0/24
BGP routing table entry for 10:1:10.0.1.0/24, version 19
Paths: (1 available, best #1, table Branch1)
  Not advertised to any peer
  10
    192.168.2.2 from 192.168.2.2 (10.0.1.1)
      Origin IGP, metric 0, localpref 100, valid, external, best
      Extended Community: RT:10:1,
      mpls labels in/out 21/nolabel
BGP routing table entry for 10:3:10.0.1.0/24, version 21
Paths: (1 available, best #1, table HQ)
  Advertised to update-groups:
     1
  10, imported path from 10:1:10.0.1.0/24
    192.168.2.2 from 192.168.2.2 (10.0.1.1)
      Origin IGP, metric 0, localpref 100, valid, external, best
      Extended Community: RT:10:1
PE#
 
PE#sh ip bgp vpnv4 all
BGP table version is 24, local router ID is 192.168.2.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete
 
   Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 10:1 (default for vrf Branch1)
*> 10.0.1.0/24      192.168.2.2              0             0 10 i
*> 10.0.2.0/24      192.168.3.2              0             0 10 i
r> 192.168.2.0/30   192.168.2.2              0             0 10 i
*> 192.168.3.0/30   192.168.3.2              0             0 10 i
Route Distinguisher: 10:2 (default for vrf Branch2)
*> 10.0.0.0/24      192.168.1.2              0             0 10 i
*> 10.0.1.0/24      192.168.2.2              0             0 10 i
r> 192.168.1.0/30   192.168.1.2              0             0 10 i
*> 192.168.2.0/30   192.168.2.2              0             0 10 i
Route Distinguisher: 10:3 (default for vrf HQ)
*> 10.0.0.0/24      192.168.1.2              0             0 10 i
*> 10.0.1.0/24      192.168.2.2              0             0 10 i
*> 10.0.2.0/24      192.168.3.2              0             0 10 i
*> 192.168.1.0/30   192.168.1.2              0             0 10 i
*> 192.168.2.0/30   192.168.2.2              0             0 10 i
r> 192.168.3.0/30   192.168.3.2              0             0 10 i
PE#
 
Branch to HQ.
Branch1#ping 10.0.2.1
 
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.2.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 20/76/240 ms
 
Ping Branch to Branch over HQ, traffic pulled by default route originated by HQ router.
Branch2#ping 10.0.1.1
 
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 52/122/276 ms
 
Branch2#trace 10.0.1.1
 
Type escape sequence to abort.
Tracing the route to 10.0.1.1
 
  1 192.168.1.1 80 msec 140 msec 28 msec
  2 192.168.3.2 [AS 10] 60 msec 24 msec 48 msec
  3 192.168.3.1 [AS 10] 44 msec 40 msec 32 msec
  4 192.168.2.2 [AS 10] 156 msec *  112 msec
 
 
Route leakage in VRF import/export RTs.
ip vrf Branch1
 rd 10:1
 route-target export 10:1
 route-target import 10:3
!
ip vrf Branch2
 rd 10:2
 route-target export 10:2
 route-target import 10:3
!
ip vrf HQ
 rd 10:3
 route-target export 10:3
 route-target import 10:1
 route-target import 10:2
!
 

Tags:

| | | |

Back