Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    feature request about send-community

    TNSR
    2
    9
    1119
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      LukeCage last edited by

      i want to send a community a prefix but i cant do this because on route-map sending community to al prefixes

      is not useful because when i want blackhole a prefix i need to blackhole all prefixes and its very bad situation

      Derelict 1 Reply Last reply Reply Quote 0
      • Derelict
        Derelict LAYER 8 Netgate @LukeCage last edited by

        @sponner

        Please give a more complete description of the problem.

        Chattanooga, Tennessee, USA
        The pfSense Book is free of charge!
        DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
        Do Not Chat For Help! NO_WAN_EGRESS(TM)

        L 1 Reply Last reply Reply Quote 0
        • L
          LukeCage @Derelict last edited by LukeCage

          @derelict when i need send a community to my upstream for block announce of to a peer for 1 prefix i cant do

          how i can send to a community only 1 prefix ?
          when i need send a community
          community will send all prefixes.

          my prefix list like thİs
          prefix list xxxx-OUT
          sequence 1 permit x.x.x.0/24
          sequence 2 permit x.x.x.0/24
          sequence 3 permit x.x.x.0/24

          my route-map like this
          route dynamic route-map xxxx-OUT-RM
          sequence 10
          policy permit
          match ip address prefix-list xxxx-OUT
          set community "1111:2222"

          Derelict 1 Reply Last reply Reply Quote 0
          • Derelict
            Derelict LAYER 8 Netgate @LukeCage last edited by

            @sponner You would need to make a prefix list for the prefix you want to the community set on, match on that, set the community, then in a later sequence match the prefixes to be announced without setting the community, delete all communities from the routes, etc.

            Chattanooga, Tennessee, USA
            The pfSense Book is free of charge!
            DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
            Do Not Chat For Help! NO_WAN_EGRESS(TM)

            L 1 Reply Last reply Reply Quote 0
            • L
              LukeCage @Derelict last edited by

              @derelict yes but i want to send community to only one prefix but i cant do this because this route map sending community to all prefixes

              myby you can add multiple route map on a neighbor

              Derelict 2 Replies Last reply Reply Quote 0
              • Derelict
                Derelict LAYER 8 Netgate @LukeCage last edited by

                @sponner You are matching all prefixes in the prefix-list when you set the community. You are not stripping any existing communities on announced routes. Still not exactly sure what you are looking to do. What prefix do you want to tag with the community and what communities exist on the routes being announced?

                Chattanooga, Tennessee, USA
                The pfSense Book is free of charge!
                DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
                Do Not Chat For Help! NO_WAN_EGRESS(TM)

                1 Reply Last reply Reply Quote 0
                • Derelict
                  Derelict LAYER 8 Netgate @LukeCage last edited by

                  @sponner

                  I'm talking about something like this (untested):

                  prefix list xxxx-OUT
                  sequence 1 permit x.x.x.0/24
                  sequence 2 permit y.y.y.0/24
                  sequence 3 permit z.z.z.0/24

                  prefix list AddCommunity-OUT
                  sequence 1 permit z.z.z.0/24

                  my route-map like this
                  route dynamic route-map xxxx-OUT-RM
                  sequence 10
                  policy permit
                  match ip address prefix-list AddCommunity-OUT
                  set community "1111:2222"
                  sequence 20
                  policy permit
                  match ip address prefix-list xxxx-OUT

                  Chattanooga, Tennessee, USA
                  The pfSense Book is free of charge!
                  DO NOT set a source port in a port forward or firewall rule unless you KNOW you need it!
                  Do Not Chat For Help! NO_WAN_EGRESS(TM)

                  L 2 Replies Last reply Reply Quote 0
                  • L
                    LukeCage @Derelict last edited by LukeCage

                    @derelict i will try sequence 10 and 20 and after i will tell you results

                    1 Reply Last reply Reply Quote 0
                    • L
                      LukeCage @Derelict last edited by

                      @derelict
                      is worked thanx

                      1 Reply Last reply Reply Quote 1
                      • First post
                        Last post