BGP route policy Issues on "Match" NEED HELP DEBUGGING



  • I have BGP running via VTI to 2 separate PFSense FW's in a 3 PFS routed setup.
    A company has a private AS of 65025 on 2 eBGP speakers, and 2 separate Internet connections. Both sites are connected together with a private circuit, routed together by OSPF.
    My office has 1 eBGP speaker of 65007. I see ALL routes and everything is great. I see the routes that are connected to Site A via Site A tunnel, likewise for Site B subnets. (Likewise I see BGP routes of other duplicate networks with higher metric) However, there are 2 subnets I would like to reach primarily via the site with the bigger/better internet circuit.

    When I attempt to groom traffic, and have some route advertised to me, use a higher LocalPref, something goes wrong.
    I make a Standard ACL (30) add 1 subnet, and save. ( I set subnet to be with a mask, and w/o and with a prefix)
    The I make a RM, set seq to 10, have it "Match ACL" and choose 30 from the drop down.
    Then I scroll down to "Local Pref" and choose "set" and then enter integer of '300'.

    Doing that, effectively stops all routes from that neighbor. I remove the RM from neighbor and route come back.
    WHEN I REMOVE THE MATCH, I AM ABLE TO APPLY LocalPref of 300, BUT JUST FOR ALL THE ROUTES.

    Since I would like to use Match function, how can I determine if this is User error or Bug on ACL Match?



  • Allow me to simplify this post. The "MATCH" function doesnt seem to be working. I have an Standard ACL, trying to affect policy on routes learned (inbound direction)



  • +1