Bgp neighborship question

Similar Messages

• Bgp-Eigrp-Bgp redistribution question

  Hi Experts,
  Just wish to ask if there is an option to retain the as-path information in eigrp when i redistribute from bgp to eigrp then to bgp?
  I recall coming across something similar to this before but I can't seem to remember it.
  Thanks in advance.

  Hello friend.
  No, you can't retain the AS-PATH when redistributing prefixes from BGP to EIGRP.
  What you CAN do though, is to add the AS-PATH you want when redistributing it BACK to BGP.
  You can do something like this:
  1 - Add a TAG when redistributing the BGP prefixes into EIGRP
  route-map SET_TAG permit 10
   set tag 100
  router eigrp 1
  redistribute bgp 100 metric 1 1 1 1 1 route-map SET_TAG
  2 - transform the TAG into an AS_PATH, when redistributing it BACK to BGP.
  route-map set-as-path-from-tag
  set as-path tag
  router bgp 100
  redistribute eigrp 1 route-map set-as-path-from-tag
  Got it ?
  I hope this helps you !
  cheers

• BGP issue on cisco 1905

  Hello All,
  I am facing some issue on BGP.I configured BGP on cisco 1905 but
  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-priority:99;
  mso-style-qformat:yes;
  mso-style-parent:"";
  mso-padding-alt:0in 5.4pt 0in 5.4pt;
  mso-para-margin:0in;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:11.0pt;
  font-family:"Calibri","sans-serif";
  mso-ascii-font-family:Calibri;
  mso-ascii-theme-font:minor-latin;
  mso-fareast-font-family:"Times New Roman";
  mso-fareast-theme-font:minor-fareast;
  mso-hansi-font-family:Calibri;
  mso-hansi-theme-font:minor-latin;
  mso-bidi-font-family:"Times New Roman";
  mso-bidi-theme-font:minor-bidi;}
  . BGP neighborship is not forming.
  I am attaching my Show tech and BGP debug.Please help me to out on this.

  Hi Manoj,
  This error message basically indicates that the two BGP neighbors didn't
  agree on some of
  the capabilities configured under the BGP configuration. This is as per RFC
  2842 for
  Capabilities Advertisement with BGP-4. I am pasting the paragraph below,
  that explains
  this:
  "If a BGP speaker that supports a certain capability determines that
     its peer doesn't support this capability, the speaker may send a
     NOTIFICATION message to the peer, and terminate peering. The Error
     Subcode in the message is set to Unsupported Capability. The message
     should contain the capability (capabilities) that causes the speaker
     to send the message.  The decision to send the message and terminate
     peering is local to the speaker.  Such peering should not be re-
     established automatically."
  http://www.faqs.org/rfcs/rfc2842.html
  Because the new code you are running supports capabilities that your other
  peers do not please add the following command on the router to the peer
  that is not coming up
  neighbor x.x.x.x dont-capability-negotiate
  If you are using prefix lists for your peer you can use this command as well
  no neighbor x.x.x.x capabilities orf prefix-list both
  Hope it will help.
  Regards
  Syed.

• Routers connected via serial subinterfaces(for non VPN internet service in a mpls network)

  I have conected two cisco 7200 routes via one serial interface.
  I am going to create two subinterfaces in each of them assign them IP address and connect them via (two BGP neighborship)
  the fact is that they cannot even ping eachother though they are directly connected .
  1. interfaces are no shut
  2.L2 protocol is HDLS on both sides
  3.the IPs are in the same subnets .
  the question is how to connect two routers with serial sub-interfaces.?
  this is my config on both routers , only the IPs are different:
  int ser 1/0
  no shut
  encapsulation hdlc
  clock rate 64000
  int ser 1/0.1
  subif)#ip add a.b.c.d x.x.x.x

  Hello Gabriel,
  Instead of using the HDLC, use frame-relay encap. Make one side as DCE. Use same DLCI on both sides.
  R4#sh run int se2/0
  Building configuration...
  Current configuration : 96 bytes
  interface Serial2/0
  no ip address
  encapsulation frame-relay
  frame-relay intf-type dce
  end
  R4#sh run int se2/0.1
  Building configuration...
  Current configuration : 113 bytes
  interface Serial2/0.1 point-to-point
  ip address 1.1.1.1 255.255.255.0
  frame-relay interface-dlci 100  
  end
  R4#ping 1.1.1.1
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 1.1.1.1, timeout is 2 seconds:
  Success rate is 100 percent (5/5), round-trip min/avg/max = 40/40/44 ms
  R4#ping 1.1.1.2
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 1.1.1.2, timeout is 2 seconds:
  Success rate is 100 percent (5/5), round-trip min/avg/max = 20/22/32 ms
  R4#sh run | i swit
  frame-relay switching
  R4#
  R5#sh run int se2/0
  Building configuration...
  Current configuration : 69 bytes
  interface Serial2/0
  no ip address
  encapsulation frame-relay
  end
  R5#sh run int se2/0.1
  Building configuration...
  Current configuration : 113 bytes
  interface Serial2/0.1 point-to-point
  ip address 1.1.1.2 255.255.255.0
  frame-relay interface-dlci 100  
  end
  R5#ping 1.1.1.1
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 1.1.1.1, timeout is 2 seconds:
  Success rate is 100 percent (5/5), round-trip min/avg/max = 20/21/24 ms
  R5#ping 1.1.1.2
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 1.1.1.2, timeout is 2 seconds:
  Success rate is 100 percent (5/5), round-trip min/avg/max = 36/40/44 ms
  R5#
  Hope this helps.
  Regards,
  Imran

• Difference between address-family ipv6 and address-family ipv6 labeled unicast

  Hello Experts,
  Can someone explain me the difference between address-family ipv6 and address-family ipv6 labeled unicast. Per my understanding, i think both of them are used to send labelled IPv6 prefix advertisements through BGP..If so, are the following configs same?
  address-family ipv6
  neighbor 192.168.0.1 activate
  neighbor 192.168.0.1 send-label
  router bgp 10
  neighbor 192.168.0.1
  address-family ipv6 labelled unicast
  Please let me know if my understanding is correct
  Thanks
  Mukundh

  Thanks for the reply Nagendra...
  I have another related query regarding this. We have BGP neighborship flapping between 2 routers ...One is Cisco 7204 and another is Juniper M120 I think.... The Juniper logs show that BGP is flapped due to family inet6 not configured on the Juniper end and Juniper is receiving BGP advertisements with native IPv6 as next hop from Cisco when it shouldn't be receiving that.. The following are commands on Cisco and Juniper...
  ##### CISCO####
  outer bgp 5603
  neighbor 95.176.254.10 inherit peer-session LAR  neighbor 95.176.254.10 description --- M320-LAB-LJ-CIGALETOVA  address-family ipv4
    neighbor 95.176.254.10 activate
    neighbor 95.176.254.10 inherit peer-policy LAR-ipv4  address-family ipv6
    neighbor 95.176.254.10 activate
    neighbor 95.176.254.10 send-community both
    neighbor 95.176.254.10 route-reflector-client
    neighbor 95.176.254.10 send-label
  template peer-session LAR
    remote-as 5603
    update-source Loopback0
    timers 30 90
  exit-peer-session
  template peer-policy LAR-ipv4
    route-map LAR-ipv4-out out
    route-reflector-client
    soft-reconfiguration inbound
    send-community both
  exit-peer-policy
  ####JUNIPER####
  protocols{bgp{
  group I-BGP-IPV4 {
              type internal;
              family inet {
                  unicast;
              family inet6 {
                  labeled-unicast {
                      explicit-null;
              export RR-Export-All;
              neighbor 95.176.255.254 {
                  description C7201-RR-IP-CIGALETOVA;
                  local-address 95.176.254.10;
              neighbor 95.176.255.252 {
                  description C7201-RR-IP-CIGALETOVA;
                  local-address 95.176.254.10;
  By the cisco command above, shouldn't cisco be sending only labelled ipv6 prefixes or am I wrong in this. And if Cisco sends both unlabelled and labelled prefixes, is there a way to make it send only ipv6 prefixes?
  Thanks
  Mukundh

• BGP advertise-map questions

  I have a few questions pertaining to Conditional advertisements in BGP using advertise-map(s).
  From the Cisco site the examples I have seen stipulate that the routes you redistribute into BGP are through the means of "network" statements.
  The first question is, are you able to redistribute the route(s) you wish to control being advertised to neighboring BGP peers via an advertise-map through the "redistribute" command or must you use "network" statements?
  The second question is, are you able to put a condition on more than one route that you may or may not want to advertise based on the condition you have set. In otherwords as an example I want to allow around 30 routes to be advertised towards a BGP peer if a certain route exists in the BGP routing table. For this I will obviously need to use an advertise-map with the exist-map statement. Is it possible to have this condition set on the 30 routes?

  Advertise-map are only related to what is sent out of the router. They really don't care how the route got into the router. You can use either network statements or the redistribution command to get them into the bgp routing table.
  I don't know what the limit is on how many addreses you can put in the route-map used for conditional advertisement but it is much more than 30. It would just be in worse case a access list that had 30 entries.
  The conditional advertisement is not really any different than a normal route-map filter. You just build a access list or prefix list that matches any address you want to allow. You do it the same way as if you were building a normal route-map that allow certain routes all the time. The only thing really special is when it is applied not how you create it.

• Question about BGP "remove-private-as"

  In Cisco document about BGP "remove-private-as", it says "if the ASpath contains the AS of the peering router (through eBGP), then the AS's will not be stripped".
  My question is: when a route is received from the peering router, its AS Path always has the peering router's AS# appended. So the assumption in the document is always true. Then what's the point to even have the assumption?
  PLease let me know if I'm incorrect somewhere.
  Thanks
  Gary

  Gary,
  Consider this: A -- B -- C
  If A has a private AS, all routes it advertises to B will contain that private AS#. If you have configured "remove-private-as" on B, it will strip that private AS# when advertising those routes to C. Now, if B somehow decides to advertise those routes back to A, that's where that statement from the Cisco Document comes in. If B stripped that private AS# from these routes, A will not know that it should drop those routes because it contains its own AS#. That's the kind of situation it is protecting against.
  Hope that helps - pls do rate the post if it does
  Paresh

• Question about OSPF to BGP redistribution

  I have some static routes on a router where OSPF and BGP are also running. I have redistributed the static routes into OSPF (showing in OSPF database). I also want to have the static routes into the BGP routing table. Understand this can be done by using a prefix list permiting all the static routes, however I was thinking a simpler way just redistributing whatever is in the OSPF routing tabel into BGP (permit 0.0.0.0/0 le 32).
  My question is if OSPF really redistributes those routes. Those routes are shown as "static" in "sh ip route" even though they are also in OSPF database. I have heard that OSPF only redistributes the routes showing as "OSPF routes", not what's in its database.
  Thanks for any help.
  Gary

  Hi Gary,
  The thing to understand here is that the use of redistribution does not change anything in the routing table of the router on which you are configuring it.
  As you have observed, static routes do not become OSPF routes when you redistribute them into OSPF. This can be generalised to the following: when you redistribute protoclol1 into protocol2, the router will scan the routing table for routes installed by protocol1 and will then do one of the following, depending on the protocol it is being redistributed into:
  - if it is a Link state protocol like OSPF, it will originate LSAs appropriate to the route being redistributed. These LSAs will be subsequently flooded to other routers which will install them as routes in their routing table. The only change on the redistributing router is the installation of additional LSAs; the routing table does not change
  - if it is a distance vector protocol like IGRP, the router will take the protocol1 routes and advertise them via IGRP update packets every time an update packet is sent. Once again, there is no change on the routing table of the redistributing router.
  Note the other important point: when redistributing is carried out, the only routes that are redistributed are those that are in the routing table and installed there by the source protocol, which could be quite different to the contents of link-state databases.
  Hope that helps.
  Pls remember to rate posts.
  Paresh.

• BGP multi-homing with two different providers – iBGP and traversal question.

  I have two internet connections.  Both connections are with different providers and on two separate routers.  I have two ASA’s that sit behind the routers and I proxy arp all hosted services off of the ASA’s outside interface.
  I am obtaining a provider independent AS number from ARIN and would like to setup eBGP peering with each provider, accepting a default route only and advertise my leased block (let’s say 50.100.150.0/24).  I’d like to prepend my AS  on the ISP-B connection to ensure that it is only used as backup.
  Here is the real question.  I know I will need to allow TCP-179 through the ASA’s to establish the iBGP connection but because the hosts that I have at site A are proxy-arp’d off of the firewall outside interface, I need some way for traffic to come in from ISP-B, to router B and then traverse over to router A so that it can be sent to ASA-Firewall A.  (please see attached diagram).  What is the best way to accomplish this?  GRE tunnel between the routers & through the firewalls?  I have ample bandwidth and low latency between site A and B.
  Thanks

  Is that orange line a direct connection between CPE routers? If yes, a direct iBGP connection is possible. If not, I suggest that you obtain one as it is almost impossible to make the ASAs stay in sync with BGP routing. (-: If you can't, then GRE could be a workaround.
  Is ASA redundancy a requirement too? (I mean in case ASA-A fails, are the site-A servers supposed to be accessible via ASA-B?) If yes, you must ensure that the outgoing traffic (default route in internal network) is in sync with active ISP and asymmetric routing is prevented. You can solve that with object tracking and you need the same static NATs in both ASAs.
  I would consider creating shared VLANs on ASA interfaces and form a failover pair too but it's a different setup.

• Question about network statement in OSPF and BGP

  The network statements in OSPF and BGP can be used to advertise networks. But I'm not clear under what circumstances would make more sense to use network statements to advertise a network than by using other methods to have the network learned by other routers.
  Here is an example: assume I'm running BGP on router A. I want to advertise network 10.1.1.0/24 to other BGP peers. I have a OSPF route for this network. I can do 2 things: one is to use "network 10.1.1.0 mask 255.255.255.0", the other is to do "redistribute OSPF ... route-map OSPF-INTO-BGP", and create a prefix list to permit 10.1.1.0/24.
  Both would work to have this network learned by other BGP peers. But which is better for what purpose?
  Thanks a lot
  Gary

  Hi Gary,
  There is one little difference between the use of the two approaches - the route injected into BGP by using a network statement will carry an Origin attribute of IGP, whereas the route injected using redistribution will have an Origin attribute of Incomplete. Now, that is not a huge issue since you can always change that whatever value you desire both with the use of the network statement and redistribution. The important thing, however, is that in the BGP best path selection process, the Origin attribute comparison is fairly high up and will prefer a route with the attribute of IGP.
  Apart from that, there is absolutely no difference between using the network statement and using redistribution with a route-map that matches exactly on the same route that you would have specified with the network statement.
  I guess one advantage of using the redistribute approach is that it does not clutter up the BGP config. If you wish to add more routes, you simply add them to the prefix list so that you don't really touch the BGP config portion at all..
  Hope that helps - pls do remember to rate posts that help.
  Paresh

• BGP Outbound Route-Map Question

  Hi Experts,
  Just need your help again. I was trying to do some lab and I came across this weird behaviour with BGP outbound route-map. The diagram is simple.
  Please see attached diagram. Sorry for the very poor illustration. R6 has iBGP peering to both R4 and R1. Both R1 and R4 have eBGP peering to R5. No IGP running on any routers as well to keep things simple. There are 2 things to do.
  * Create a static route for 160.1.0.0/16 pointing to Null0 on both R1 and R4 and advertise to BGP via network statement but only R5 should be able to see the 160.1.0.0/16 route. R6 should not receive it.
  * Advertise R5's /32 loopback interface to BGP but ensure R6 to have that route in its routing table. Don't use next-hop-self on both R1 and R4. Don't advertise WAN link via network command.
  I'll just illustrate R4 and R6 here to keep things straight forward.
  R4#sh ip bgp
  BGP table version is 5, local router ID is 150.1.4.4
  Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
                r RIB-failure, S Stale
  Origin codes: i - IGP, e - EGP, ? - incomplete
     Network          Next Hop            Metric LocPrf Weight Path
  *> 150.1.5.5/32     155.1.45.5               0             0 100 i
  *> 160.1.0.0        0.0.0.0                  0         32768 i
  R6#sh ip bgp
  BGP table version is 11, local router ID is 150.1.6.6
  Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
                r RIB-failure, S Stale
  Origin codes: i - IGP, e - EGP, ? - incomplete
     Network          Next Hop            Metric LocPrf Weight Path
  * i150.1.5.5/32     155.1.45.5               0    100      0 100 i
  * i                 155.1.0.5                0    100      0 100 i
  The first task was achieved as the 160.0.0.0/16 route is not present in R6's table. I used these commands in R4.
  router bgp 65000
   no synchronization
   bgp log-neighbor-changes
   network 160.1.0.0
   neighbor 155.1.45.5 remote-as 100
   neighbor 155.1.146.6 remote-as 65000
   neighbor 155.1.146.6 route-map R6_OUT out
   no auto-summary
  route-map R6_OUT deny 5
   match ip address prefix-list AGGR
  route-map R6_OUT permit 1000
  ip prefix-list AGGR seq 5 permit 160.1.0.0/16
  So with the configuration above, it is clear that R4 is hitting route-map line 5 to deny 160.1.0.0/16 being advertised to R6. I tried to remove line 5 to validate as well if the /16 route will be advertised to R6 and it did so route-map configuration above is confirmed working.
  Next, advertise loopback 0 of R5 to R6 and make sure it is a valid route in BGP table without the use of next-hop-self or WAN advertisement.
  I used the following configuration.
  ip prefix-list R5_LINK seq 5 permit 155.1.45.5/32
  route-map R6_OUT permit 10
   match ip route-source R5_LINK
   set ip next-hop 155.1.146.4
  I inserted line 10 in between route-map 5 and 1000. So R4 would check its route table for routes with 155.1.45.5 as route-source then advertise it to R6 with next-hop address of 155.1.146.4. It worked!
  R6#sh ip bgp
  BGP table version is 15, local router ID is 150.1.6.6
  Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
                r RIB-failure, S Stale
  Origin codes: i - IGP, e - EGP, ? - incomplete
     Network          Next Hop            Metric LocPrf Weight Path
  *>i150.1.5.5/32     155.1.146.4              0    100      0 100 i
  * i                 155.1.0.5                0    100      0 100 i
  *>i160.1.0.0        155.1.146.4              0    100      0 i
  As you can see above, 150.1.5.5 route is now a valid BGP route but surprisingly, the 160.1.0.0/16 route is there! From what I have seen, BGP skipped line 5 and started at 10. Even if I insert the same rule as line 5 and make it as line 15, it's not working. The /16 route is still being advertised. If I remove the match ip route-source clause in sequence 10 then it will withdraw the 160.1.0.0/16 route again. Looks like "match ip route-source" is not very friendly with direct filtering to BGP neighbors but I saw this being used with BGP inject-map and it worked well.
  R4#sh route-map
  route-map R6_OUT, deny, sequence 5
    Match clauses:
      ip address prefix-lists: AGGR
    Set clauses:
    Policy routing matches: 0 packets, 0 bytes
  route-map R6_OUT, permit, sequence 10
    Match clauses:
      ip route-source (access-lists): R5_LINK
    Set clauses:
      ip next-hop 155.1.146.4
    Policy routing matches: 0 packets, 0 bytes
  route-map R6_OUT, permit, sequence 1000
    Match clauses:
    Set clauses:
    Policy routing matches: 0 packets, 0 bytes
  Any thoughts why this is happening?
  Thanks in advance.

  Hi John,
  I did a small lab to test feature "match ip route-source" and it is working fine. Please check below config and output.
  R4 does not have 172.16.16.0/24 and also routes for which next-hop is not 1.1.1.1. In case you still facing issue, please share output of "debug ip bgp updates out"
  Topology
  R1--ebgp--R3---ibgp---R4
  R3#show ip b su | b Nei
  Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
  1.1.1.1         4          100      34      36       29    0    0 00:27:37        7
  4.4.4.4         4          300       9      12       29    0    0 00:04:12        0
  R3#
  R3#sh route-map TO-R4
  route-map TO-R4, deny, sequence 10
    Match clauses:
      ip address prefix-lists: DENY-PREFIX 
    Set clauses:
    Policy routing matches: 0 packets, 0 bytes
  route-map TO-R4, permit, sequence 20
    Match clauses:
      ip route-source (access-lists): 20 
    Set clauses:
    Policy routing matches: 0 packets, 0 bytes
  R3#
  R3#show ip prefix-list DENY-PREFIX
  ip prefix-list DENY-PREFIX: 1 entries
     seq 5 permit 172.16.16.0/24
  R3#
  R3#sh ip access-lists 20
  Standard IP access list 20
      20 permit 1.1.1.1 (25 matches)
  R3#
  R3#show ip b
  BGP table version is 29, local router ID is 3.3.3.3
  Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
                r RIB-failure, S Stale, m multipath, b backup-path, x best-external
  Origin codes: i - IGP, e - EGP, ? - incomplete
     Network          Next Hop            Metric LocPrf Weight Path
  *  172.16.8.0/22    1.1.1.1                  0             0 100 i
  *>                  172.31.13.1             20         32768 i
  *> 172.16.16.0/24   1.1.1.1                  0             0 100 i
  *> 172.16.17.0/24   1.1.1.1                  0             0 100 i
  *> 172.16.19.0/24   1.1.1.1                  0             0 100 i
  *> 172.16.20.0/22   1.1.1.1                  0             0 100 i
  *  172.16.24.0/30   1.1.1.1                  0             0 100 i
  *>                  172.31.13.1             20         32768 i
  *> 172.16.80.0/22   1.1.1.1                  0             0 100 i
  R3#
  R4#show ip b
  BGP table version is 53, local router ID is 4.4.4.4
  Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
                r RIB-failure, S Stale, m multipath, b backup-path, x best-external
  Origin codes: i - IGP, e - EGP, ? - incomplete
     Network          Next Hop            Metric LocPrf Weight Path
  r>i172.16.17.0/24   1.1.1.1                  0    100      0 100 i
  r>i172.16.19.0/24   1.1.1.1                  0    100      0 100 i
  r>i172.16.20.0/22   1.1.1.1                  0    100      0 100 i
  *>i172.16.80.0/22   1.1.1.1                  0    100      0 100 i
  R4#
  --Pls dont forget to rate helpful posts--
  Regards,
  Akash

• BGP received-only Question

  Hi
  From what I understand in the show ip bgp x.x.x.x/x output the received-only would be present when soft-reconfiguration inbound is configured and the route has been rejected by a policy i.e. a route map
  What i have also found is that on many outputs i can see the exact same route in the output twice, one which has the received-only keyword and one doesn't.
  Now for a specified neighbor we have a route map configured inbound which will change the weight based on the community value. It seems as though when a route map is configured and an attribute is changed that route appears in the output twice, one being modified and one which is unchanged. But this contradicts what is said on the Cisco website its states 'the received-only keyword will only show up if the route is denied by a policy', but its not.. it's just changed.
  Has anyone had this discussion before? I would like to hear people's thoughts on the matter.
  Thanks
  Andre
  corerouter#show ip bgp | b 10.141.54.0
  * 10.141.54.0/23 10.199.10.18 0 64000 34406 65502 ?
  *> 10.199.10.18 0 64000 34406 65502 ?
  corerouter#sho ip bgp 10.141.54.0/23
  BGP routing table entry for 10.141.54.0/23, version 1219279
  Paths: (4 available, best #3, table Default-IP-Routing-Table)
  Advertised to update-groups:
  2 3 4 5 6 7
  34406 65502
  10.199.10.18 from 10.199.10.20 (82.196.60.60)
  Origin incomplete, metric 0, localpref 100, weight 64000, valid, external
  Community: 10199111
  34406 65502, (received-only)
  10.199.10.18 from 10.199.10.20 (82.196.60.60)
  Origin incomplete, metric 0, localpref 100, valid, external
  Community: 10199111
  34406 65502
  10.199.10.18 from 10.199.10.19 (82.196.60.1)
  Origin incomplete, metric 0, localpref 100, weight 64000, valid, external, best
  Community: 10199111
  34406 65502, (received-only)
  10.199.10.18 from 10.199.10.19 (82.196.60.1)
  Origin incomplete, metric 0, localpref 100, valid, external
  Community: 10199111

  show ip bgp neighbor x.x.x.x received-routes
  show ip bgp neighbor x.x.x.x routes
  sho ip bgp a.b.c.d
  If you found this page, like I did, while searching for "received-only" - that means that the route has only been received, but not entered in the routing table. This is good if you meant to block that route.  But if that route is actually also installed in the routing table and you meant to block it, check your route-map, specifically your prefix-lists and you will likely find that you have an error with wither the IP address or the CIDR mask, resulting in a non-match condition. The inverse is also true if you intend to allow a route but you only see the "received-only" route, you probably have a typo in your route-map or prefix list.  Below are some examples that might help.
  Here are some BGP with route-map and prefix-list examples, although the data is not meaningful. 
  router bgp 1234
    neighbor CARRIER1 peer-group
    neighbor CARRIER1 route-map PROVIDER1-IN in
    neighbor 6.7.8.9 peer group CARRIER1
  route-map PROVIDER1-IN deny 5
    match ip address prefix-list MyIPs
  route-map PROVIDER1-IN permit 10
    match ip address prefix-list GOOG APPL
  ip prefix-list GOOG seq 5 permit 8.8.8.0/24 le 32
  ip prefix-list GOOG seq 10 permit 8.8.4.4/32
  ip prefix-list APPL seq 5 per 17.142.160.59/32
  ip prefix-list APPL seq 10 per 17.178.96.0/24 le 32
  ip prefix-list MyIPs seq 5 per 1.2.0.0/16 le 24
  ip prefix-list MyIPs seq 10 per 2.3.4.0/24 le 32
  ip prefix-list MyIPs seq 15 per 4.5.6.7/32

• BGP Question

  Hi,
  I currently work for an ISP and also studying BGP. I was wondering when an ISP peers with another ISP what is the most common or best way for an ISP to advertise there networks. They obviously can't use the network commend as you could have 1000's and 1000's of routes will they use a routes map and apply this outbound and the route match matches a prefix list?
  What options do you have here?

  The most common way for an ISP to advertise their networks is that they advertise routes/prefixes that they have learned from others. When they have learned routes/prefixes from one EBGP peer then they can advertise those to other BGP peers (no network statement required). And when they have learned routes/prefixes from their customers they may aggregate or summarize those routes and advertise the results to BGP neighbors. They would need network statements only for the networks whose advertisement is started from that ISP.
  HTH
  Rick

• IPv6 - Newb Question (BGP Advertisement)

  Hi Everyone - Quick question on IPv6 subnetting
  If we are allocated a /32 from an RIR (eg 2001:0DB0::/32), and we advertise the /32 to our upstream Inet providers - Assigning
  2001:0DB0:0:10::1/64 to a loop Interface, we *should* be able to reach the Upstream providers IPv6 addresses with a source of the loop interface(As the /64 is within the /32 subnet)?
  Cheers.

  Hi John,
  Correct. You should be able to use that technique to perform initial testing for your ipv6 connectivity. You can use extended ping for instance to specify the loopback interface as the source address.
  Regards

• Do you need a cisco router at remote sites when using VRF BGP?

  Hello.....
  If you could refer to the attached document and read the following... I need to know if a CISCO router is required for each of the sites.   OR does the ISP (Provider) provide the only required Router in the private cloud?
  We want to replace the Cisco 891 with a PepLink but I don't know if we can do that.  Can anyone jump in and help me understand?
  When we hear about VRF, its almost synonymous to MPLS VPN. Virtual Routing and Forwarding is commonly used by Service Providers to provide services within an MPLS cloud with multiple customers. The most interesting feature of this is that, VRF allows creation of multiple routing tables within a single router. This means that overlapping use of IP addresses from different customers is possible. Some enterprises use VRF to seggrate their services like VOIP, wireless, geographical location and other varieties.

  Whether you can replace the 891 device with another device boils down to a single question: Do you need to run BGP with the Service Provider in order to use their service. If you need to run a routing protocol with your service provider, your service is likely a L3VPN (IP VPN) solution ( i.e. you inject your site's routes into the providers L3VPN session, they use MP-BGP+VRF for segmentation within their network).
  If, however, they just drop you a L2 connection and provide L2 emulated services ( e.g. L2VPN or VPLS ) across their network, then your device can be whatever you want it to be.
  From your device's perspective, it is not VRF aware. That is, it does not know about how the service provider segments your service from another customers. In the L3VPN case, your device is routing-protocol aware. In the L2VPN case, your device is not routing protocol aware and does not need to form adjacency with the service provider's equipment.
  HTH.
  Rate if helpful.