Configure IP Prefix List and Route Map on Tenant BGP Peer Group

About this task

To enable external connectivity, you can configure the IP prefix list and route map attributes in ingress or egress direction when you create or update BGP peer group.

Procedure

  1. Run the following command configure IP prefix list and route map attributes when you create BGP peer group:
    efa tenant service bgp peer-group create --name <bgp-pg-name> --tenant <tenant-name>
                --pg-name <device-ip:pg-name> --pg-asn <device-ip,pg-name:remote-asn>
                --pg-bfd-enable <device-ip,pg-name:true|false> 
                --pg-ipv4-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv4-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv4-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
                --pg-ipv4-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
                ……..
                --pg-ipv6-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv6-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv6-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
                --pg-ipv6-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
    

    Example:

    efa tenant service bgp peer-group create --name ten1bgppg1 --tenant ten1 
               --pg-name 10.20.246.15:pg1 --pg-asn 10.20.246.15,pg1:55001 
               --pg-bfd-enable 10.20.246.15,pg1:true 
               --pg-ipv4-uc-nbr-prefix-list 10.20.246.15,pg1:ipPrefixList1,in
               --pg-ipv6-uc-nbr-prefix-list 10.20.246.15,pg1:ipPrefixList2,out 
               --pg-ipv4-uc-nbr-route-map 10.20.246.15,pg1:routeMap2,in 
               --pg-ipv6-uc-nbr-route-map 10.20.246.15,pg1:routeMap1,in 
               ……..
               --pg-name 10.20.246.16:pg1 --pg-asn 10.20.246.16,pg1:55001 
               --pg-bfd-enable 10.20.246.16,pg1:true 
               --pg-ipv4-uc-nbr-prefix-list 10.20.246.16,pg1:ipPrefixList1,in
               --pg-ipv6-uc-nbr-prefix-list 10.20.246.16,pg1:ipPrefixList1,out 
               --pg-ipv4-uc-nbr-route-map 10.20.246.16,pg1:routeMap1,in 
               --pg-ipv6-uc-nbr-route-map 10.20.246.16,pg1:routeMap1,out
  2. Run the following command configure IP prefix list and route map attributes when you update BGP peer group:
    efa tenant service bgp peer-group update --name <bgp-pg-name> --tenant <tenant-name> 
                --operation peer-group-add 
                --pg-name <device-ip:pg-name> --pg-asn <device-ip,pg-name:remote-asn>
                --pg-bfd-enable <device-ip,pg-name:true|false> 
                --pg-ipv4-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv4-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv4-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
                --pg-ipv4-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>           
                ……..
                --pg-ipv6-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv6-uc-nbr-prefix-list <device-ip,pg-name:prefix-list-name,direction>
                --pg-ipv6-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>
                --pg-ipv6-uc-nbr-route-map <device-ip,pg-name:route-map-name,direction>

    Example:

    efa tenant service bgp peer-group update --name ten1bgppg1 --tenant ten1 
                       --operation peer-group-add 
                       --pg-name 10.20.246.15:pg2 --pg-asn 10.20.246.15,pg2:55002 
                       --pg-bfd-enable 10.20.246.15,pg2:true 
                       --pg-ipv6-uc-nbr-prefix-list 10.20.246.15,pg2:ipPrefixList2,out 
                       --pg-ipv4-uc-nbr-route-map 10.20.246.15,pg2:routeMap2,in
                       ……..
                       --pg-name 10.20.246.16:pg2 --pg-asn 10.20.246.16,pg2:55002 
                       --pg-bfd-enable 10.20.246.16,pg2:true 
                       --pg-ipv6-uc-nbr-prefix-list 10.20.246.16,pg2:ipPrefixList1,out 
                       --pg-ipv4-uc-nbr-route-map 10.20.246.16,pg2:routeMap1,in
    efa tenant service bgp peer-group show --detail
    ==========================================================
    Name             : ten1bgppg1
    Tenant           : ten1
    State            : bgp-pg-created
    Description      :
    
    Peer Group
    ----------
            Device IP         : 10.20.246.16
            Peer Group        : pg1
            Remote ASN        : 65002
            Next Hop Self     : true
            Update Source IP  : 10.20.30.40
            BFD Enabled       : true
            BFD Interval      : 100
            BFD Rx            : 300
            BFD Multiplier    : 5
            MD5 Password      : $9$QxCvD7N6a0P96eT3BvnQfQ==
            Remove Private AS : true
            Prefix List In : Name (afi)
                                ipPrefixList1 (ipv4)
            Prefix List Out   : Name (afi)
                                ipPrefixList1 (ipv6)
            Route Map In      : Name (afi)
                                routeMap1 (ipv4)
            Route Map Out     : Name (afi)
                                routeMap1 (ipv6)
            Send Community    : both (ipv4)
            Dev State         : provisioned
            App State         : cfg-in-sync
    
            Device IP         : 10.20.246.16
            Peer Group        : pg2
            Remote ASN        : 65002
            Next Hop Self     : true
            Update Source IP  : 10.20.30.50
            BFD Enabled       : true
            BFD Interval      : 100
            BFD Rx            : 300
            BFD Multiplier    : 5
            MD5 Password      : $9$QxCvD7N6a0P96eT3BvnQfQ==
            Remove Private AS : true
            Prefix List In    : 
            Prefix List Out   : Name (afi)
                                ipPrefixList1 (ipv6)
            Route Map In      : Name (afi)
                                routeMap1 (ipv4)
            Route Map Out     : 
            Send Community    : both (ipv4)
            Dev State         : provisioned
            App State         : cfg-in-sync
    ================================================
    ========================================================       
    
    
    
    
    
    
    
            Device IP         : 10.20.246.15
            Peer Group        : pg1
            Remote ASN        : 65002
            Next Hop Self     : true
            Update Source IP  : 10.20.30.40
            BFD Enabled       : true
            BFD Interval      : 100
            BFD Rx            : 300
            BFD Multiplier    : 5
            MD5 Password      : $9$QxCvD7N6a0P96eT3BvnQfQ==
            Remove Private AS : true
           Prefix List In  : Name (afi)
                                ipPrefixList1 (ipv4)
            Prefix List Out   : Name (afi)
                                ipPrefixList1 (ipv6)
            Route Map In      : Name (afi)
                                routeMap1 (ipv6)
                                routeMap2 (ipv4)
            Send Community    : both (ipv4)
            Dev State         : provisioned
            App State         : cfg-in-sync
    
            Device IP         : 10.20.246.15
            Peer Group        : pg2
            Remote ASN        : 65002
            Next Hop Self     : true
            Update Source IP  : 10.20.30.50
            BFD Enabled       : true
            BFD Interval      : 100
            BFD Rx            : 300
            BFD Multiplier    : 5
            MD5 Password      : $9$QxCvD7N6a0P96eT3BvnQfQ==
            Remove Private AS : true
            Prefix List In    : 
            Prefix List Out   : Name (afi)
                                ipPrefixList1 (ipv6)
            Route Map In      : Name (afi)
                                routeMap1 (ipv4)
            Route Map Out     : 
            Send Community    : both (ipv4)
            Dev State         : provisioned
            App State         : cfg-in-sync 
    ===============================================
  3. Verify the switch configuration on the SLX device.
    Rack1-Device1# show running-config router bgp
    router bgp
     local-as 4200000000
     capability as4-enable
     fast-external-fallover
     neighbor pg1 peer-group
     neighbor pg1 remote-as 65002
     neighbor pg1 update-source 10.20.30.40
     neighbor pg1 next-hop-self
     neighbor pg1 password $9$QxCvD7N6a0P96eT3BvnQfQ==
     neighbor pg1 remove-private-as
     neighbor pg1 bfd
     neighbor pg1 bfd interval 100 min-rx 300 multiplier 5
     neighbor pg2 peer-group
     neighbor pg2 remote-as 65002
     neighbor pg2 update-source 10.20.30.50
     neighbor pg2 next-hop-self
     neighbor pg2 password $9$QxCvD7N6a0P96eT3BvnQfQ==
     neighbor pg2 remove-private-as
     neighbor pg2 bfd
     neighbor pg2 bfd interval 100 min-rx 300 multiplier 5
     neighbor 10.20.20.4 remote-as 4200000000
     neighbor 10.20.20.4 next-hop-self
     address-family ipv4 unicast
      network 172.31.254.214/32
      network 172.31.254.228/32
      neighbor pg2 route-map in routeMap2
      neighbor pg1 prefix-list ipPrefixList1 in
      neighbor pg1 route-map in routeMap2
      maximum-paths 8
      graceful-restart
     !
     address-family ipv6 unicast
      neighbor pg2 prefix-list ipPrefixList2 out
      neighbor pg1 prefix-list ipPrefixList2 out
      neighbor pg1 route-map in routeMap1
     !
     address-family l2vpn evpn
      graceful-restart
     !
    !
    Rack1-Device2# show running-config router bgp
    router bgp
     local-as 4200000000
     capability as4-enable
     fast-external-fallover
     neighbor pg1 peer-group
     neighbor pg1 remote-as 65002
     neighbor pg1 update-source 10.20.30.40
     neighbor pg1 next-hop-self
     neighbor pg1 password $9$QxCvD7N6a0P96eT3BvnQfQ==
     neighbor pg1 remove-private-as
     neighbor pg1 bfd
     neighbor pg1 bfd interval 100 min-rx 300 multiplier 5
     neighbor pg2 peer-group
     neighbor pg2 remote-as 65002
     neighbor pg2 update-source 10.20.30.50
     neighbor pg2 next-hop-self
     neighbor pg2 password $9$QxCvD7N6a0P96eT3BvnQfQ==
     neighbor pg2 remove-private-as
     neighbor pg2 bfd
     neighbor pg2 bfd interval 100 min-rx 300 multiplier 5
     neighbor 10.20.20.5 remote-as 4200000000
     neighbor 10.20.20.5 next-hop-self
     address-family ipv4 unicast
      network 172.31.254.214/32
      network 172.31.254.246/32
      neighbor pg2 route-map in routeMap1
      neighbor pg1 prefix-list ipPrefixList1 in
      neighbor pg1 route-map in routeMap1
      maximum-paths 8
      graceful-restart
     !
     address-family ipv6 unicast
      neighbor pg2 prefix-list ipPrefixList1 out
      neighbor pg1 prefix-list ipPrefixList1 out
      neighbor pg1 route-map out routeMap1
     !
     address-family l2vpn evpn
      graceful-restart
     !
    !