You can configure “aggregate-address” (to be advertised by BGP) per tenant VRF (and device) when you create or update a VRF. EFA provisions the “aggregate-address” on switches when VRF is instantiated or updated on the switches.
efa tenant vrf create --name <vrf-name> --tenant <tenant-name>
--ipv4-aggregate-address <device-ip,aggregate-address>
--ipv4-aggregate-summary-only <device-ip,aggregate-address,true|false>
--ipv4-aggregate-as-set <device-ip,aggregate-address,true|false>
--ipv4-aggregate-advertise-map <device-ip,aggregate-address,route-map>
--ipv4-aggregate-suppress-map <device-ip,aggregate-address,route-map>
efa tenant vrf update --name <vrf-name> --tenant <tenant-name>
--operation aggregate-address-add| aggregate-address-delete
--ipv4-aggregate-address <device-ip,aggregate-address>
--ipv4-aggregate-summary-only <device-ip,aggregate-address,true|false>
--ipv4-aggregate-as-set <device-ip,aggregate-address,true|false>
--ipv4-aggregate-advertise-map <device-ip,aggregate-address,route-map>
--ipv4-aggregate-suppress-map <device-ip,aggregate-address,route-map>
Exampleefa tenant vrf create --name vrf1 --tenant tenant1
--ipv4-aggregate-address 10.24.80.134,10.20.21.40/30
--ipv4-aggregate-summary-only 10.24.80.134,10.20.21.40/30,true
--ipv4-aggregate-as-set 10.24.80.134,10.20.21.40/30,true
--ipv4-aggregate-advertise-map 10.24.80.134,10.20.21.40/30,some
--ipv4-aggregate-suppress-map 10.24.80.134,10.20.21.40/30,some
--ipv6-aggregate-address 10.24.80.135,10::20/126
--ipv6-aggregate-summary-only 10.24.80.135,10::20/126,true
--ipv6-aggregate-as-set 10.24.80.135,10::20/126,true
--ipv6-aggregate-advertise-map 10.24.80.135,10::20/126,some
--ipv6-aggregate-suppress-map 10.24.80.135,10::20/126,some
efa tenant epg create --name ten1epg1 --tenant tenant1
--port 10.24.80.134[0/11],10.24.80.135[0/11]
--switchport-mode trunk –ctag-range 11 --vrf vrf1 –anycast-ip 11:10.10.11.1/24
efa tenant vrf update –-name vrf1 –-tenant tenant1
--operation aggregate-address-add
--ipv4-aggregate-address 10.24.80.134,10.21.21.40/30
--ipv4-aggregate-summary-only 10.24.80.134,10.21.21.40/30,true
--ipv4-aggregate-as-set 10.24.80.134,10.21.21.40/30,true
--ipv4-aggregate-advertise-map 10.24.80.134,10.21.21.40/30,some
--ipv4-aggregate-suppress-map 10.24.80.134,10.21.21.40/30,some
--ipv6-aggregate-address 10.24.80.135,11::20/126
--ipv6-aggregate-summary-only 10.24.80.135,11::20/126,true
--ipv6-aggregate-as-set 10.24.80.135,11::20/126,true
--ipv6-aggregate-advertise-map 10.24.80.135,11::20/126,some
--ipv6-aggregate-suppress-map 10.24.80.135,11::20/126,some
|
Rack1-Device1# sh run router bgp address-family ipv4 unicast vrf vrf1
router bgp
address-family ipv4 unicast vrf vrf1
redistribute connected
aggregate-address 10.20.21.40/30 advertise-map some
aggregate-address 10.20.21.40/30 as-set
aggregate-address 10.20.21.40/30 summary-only
aggregate-address 10.20.21.40/30 suppress-map some
aggregate-address 10.21.21.40/30 advertise-map some
aggregate-address 10.21.21.40/30 as-set
aggregate-address 10.21.21.40/30 summary-only
aggregate-address 10.21.21.40/30 suppress-map some
!
address-family ipv6 unicast vrf vrf1
redistribute connected
!
!
|
Rack1-Device2# sh run router bgp address-family ipv4 unicast vrf vrf1
router bgp
address-family ipv4 unicast vrf vrf1
redistribute connected
!
address-family ipv6 unicast vrf vrf1
redistribute connected
aggregate-address 10::20/126 advertise-map some
aggregate-address 10::20/126 as-set
aggregate-address 10::20/126 summary-only
aggregate-address 10::20/126 suppress-map some
aggregate-address 11::20/126 advertise-map some
aggregate-address 11::20/126 as-set
aggregate-address 11::20/126 summary-only
aggregate-address 11::20/126 suppress-map some
!
!
|