Creates a BGP (Border Gateway Protocol) peer for a specified VRF.
device-ip,vrf-name:ipv4-listen-range,peer-group-name,listen-limit
.
For example: 10.x.x.x,red:11::22/127
. The listen-limit
value is optional.device-ip,vrf-name:ipv4-neighbor,remote-as
. For example:
10.x.x.x,red:10.20.30.40,5000
.device-ip,vrf-name:ipv4-neighbor,bfd-enable(true/false),bfd-interval,bfd-min-rx,bfd-multiplier
.
For example: 10.x.x.x,red:10.20.30.40,true,100,200,5
. device-ip,vrf-name:neighbor-ip,( all | both |
extended | large | standard | large-and-standard |
large-and-extended).
device-ip,vrf-name:ipv4-neighbor,route-map-name,direction(in/out)
.
remove-private-as
setting on or off per BGP peer group,
created for external connectivity, in the following format: device-ip,vrf-name:neighbor-ip,true|false
. For example:
10.20.246.15,ten1vrf1:10.20.30.40,true
.default-originate
setting for the IPv4 unicast neighbor, with
a string in the following format: device-ip,vrf-name:neighbor-ip,true/false
. For example:
10.20.246.15,ten1vrf1:10.20.30.40,true
.default-originate
setting for the IPv4 unicast neighbor, with
a string in the following format: device-ip,vrf-name:neighbor-ip,route-map
. For example: 10.20.246.16,ten1vrf1:10.20.30.40,rmap1
.device-ip,vrf-name:ipv4-neighbor,next-hop-self(true/false/always)
.
For example: 10.x.x.x,red:10.y.y.y,true
.device-ip,vrf-name:ipv4-neighbor,update-source-ip
. For
example: 10.x.x.x,red:10.y.y.y,11.x.x.x
.Identifies the IPv4 unicast neighbor MD5 password in the following
format: device-ip,vrf-name:ipv4-neighbor,ipv4-md5-password
.
Example for encrypted/password containing special characters: --ipv4-uc-nbr-md5-password
device-ip,vrf-name:ipv4-neighbor,'$9$MCgKGaNt6OASX68/7TC6Lw=='
false
.device-ip,vrf-name:ipv6-listen-range,peer-group-name,listen-limit
.
The listen-limit
value is optional.device-ip,vrf-name:ipv6-neighbor,remote-as
. For example:
10.x.x.x,red:10::40,5000
. device-ip,vrf-name:ipv6-neighbor,bfd-enable(true/false),bfd-interval,bfd-min-rx,bfd-multiplier
.
For example: 10.x.x.x,red:10::40,true,100,200,5
. device-ip,vrf-name:ipv6-neighbor,default-originate(true/false)
.
device-ip,vrf-name:ipv6-neighbor,route-map-name
. Identifies the IPv6 unicast neighbor MD5 password, in the following
format: device-ip,vrf-name:ipv6-neighbor,ipv6-md5-password
.
Example for encrypted/password containing special characters: --ipv6-uc-nbr-md5-password
device-ip,vrf-name:ipv6-neighbor,'$9$MCgKGaNt6OASX68/7TC6Lw=='
device-ip,vrf-name:ipv6-neighbor,next-hop-self(true/false/always)
.
For example: 10.x.x.x,red:10::40,true
.device-ip,vrf-name:ipv6-neighbor,remove-private-as(true/false)
.device-ip,vrf-name:ipv6-neighbor,route-map-name,direction(in/out)
.device-ip,vrf-name:ipv6-neighbor,update-source-ip
. For
example: 10.x.x.x,red:10::40,11::22
.device-ip,vrf-name:neighbor-ip,( all | both |
extended | large | standard | large-and-standard |
large-and-extended).
Identifies the BGP neighbor add-path capability in the format device-ip,vrf-name:ipv4-neighbor,add-path-capability. Valid values are (send / receive / both).
Identifies the BGP neighbor add-path advertise best in the format device-ip,vrf-name:ipv4-neighbor,add-path-advertise-best. Valid values are 2-16.
Identifies the BGP neighbor add-path capability in the format device-ip,vrf-name:ipv6-neighbor,add-path-capability. Valid values are (send / receive / both).
Identifies the BGP neighbor add-path advertise best in the format device-ip,vrf-name:ipv6-neighbor,add-path-advertise-best. Valid values are 2-16.
$ efa tenant service bgp peer create --name B1 --tenant tenant11 --ipv4-uc-nbr 10.20.216.16,blue11:1.1.1.11,95001 --ipv4-uc-nbr-bfd 10.20.216.16,blue11:1.1.1.11,true,50,5000,50 --ipv4-uc-nbr-next-hop-self 10.20.216.16,blue11:1.1.1.11,always --ipv4-uc-nbr-update-source-ip 10.20.216.16,blue11:1.1.1.11,10.11.12.13 --ipv6-uc-nbr 10.20.216.16,blue11:20a1:a::10,95001 --ipv6-uc-nbr-bfd 10.20.216.16,blue11:20a1:a::10,true,50,5000,50 --ipv6-uc-nbr-next-hop-self 10.20.216.16,blue11:20a1:a::10,always --ipv6-uc-nbr-update-source-ip 10.20.216.16,blue11:20a1:a::10,20::10 BgpService created successfully.This example creates a dynamic BGP peer (IPv4 and IPv6).
$ efa tenant service bgp peer create --name B2 --tenant tenant11 --ipv6-uc-dyn-nbr 10.20.216.16,blue11:15::/127,pg1,10 --ipv4-uc-dyn-nbr 10.20.216.16,blue11:15.15.15.0/28,pg1,10 BgpService created successfully.This example creates a BGP peer MD5 password in a secure manner. For more information, see the "Configure BGP MD5 Authentication for Tenant BGP Peer and Peer-group Securely" topic in the ExtremeCloud Orchestrator Security Guide, 3.3.0 .
$ efa tenant service bgp peer create --name bgp173-2501 --tenant tenant11 --ipv4-uc-nbr 10.20.246.6,v1:25.1.1.3,5901 --ipv4-uc-nbr-bfd 10.20.246.6,v1:25.1.1.3,true --ipv6-uc-nbr 10.20.246.5,v1:25:1::3,5901 --ipv6-uc-nbr-bfd 10.20.246.5,v1:25:1::3,true --md5-password-prompt-enable=true
$ efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr 10.20.246.15,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-remove-private-as 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr 10.20.246.16,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-remove-private-as 10.20.246.16,ten1vrf1:10.20.30.40,true
$ efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr 10.20.246.15,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr 10.20.246.16,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate-route-map 10.20.246.16,ten1vrf1:10.20.30.40,rmap1
$ efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr 10.20.246.15,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-prefix-list-in 10.20.246.15,ten1vrf1:10.20.30.40,ipprefix1 --ipv4-uc-nbr 10.20.246.16,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-prefix-list-out 10.20.246.16,ten1vrf1:10.20.30.40,ipprefix1
$ efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr 10.20.246.15,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-route-map 10.20.246.15,ten1vrf1:10.20.30.40,rmap1,in --ipv4-uc-nbr 10.20.246.16,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-route-map 10.20.246.16,ten1vrf1:10.20.30.40,rmap1,out -–ipv6-uc-nbr 10.20.246.15,ten1vrf1:25:1::3,50000 -–ipv6-uc-nbr-bfd 10.20.246.15,ten1vrf1:25:1::3,true -–ipv6-uc-nbr-route-map 10.20.246.15,ten1vrf1:25:1::3,rmap1,in -–ipv6-uc-nbr 10.20.246.16,ten1vrf1:25:1::3,50000 -–ipv6-uc-nbr-bfd 10.20.246.16,ten1vrf1:25:1::3,true -–ipv6-uc-nbr-route-map 10.20.246.16,ten1vrf1:25:1::3,rmap1,out
$ efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr 10.20.246.15,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate 10.20.246.15,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr 10.20.246.16,ten1vrf1:10.20.30.40,50000 --ipv4-uc-nbr-bfd 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate 10.20.246.16,ten1vrf1:10.20.30.40,true --ipv4-uc-nbr-default-originate-route-map 10.20.246.16,ten1vrf1:10.20.30.40,rmap1
efa tenant service bgp peer create --name ten1bgppeer1 --tenant ten1 --ipv4-uc-nbr-bfd 10.20.246.15,ten1vrf1:25.1.1.2,true --ipv6-uc-nbr 10.20.246.15,ten1vrf1:25:1::3,5900 --ipv6-uc-nbr-bfd 10.20.246.15,ten1vrf1:25:1::3,true --ipv6-uc-nbr-md5-password 10.20.246.15,ten1vrf1:25:1::3,password --ipv4-uc-nbr-md5-password 10.20.246.15,ten1vrf1:25.1.1.2,password --ipv4-uc-nbr-send-community 10.20.246.15,ten1vrf1:25.1.1.2,all --ipv6-uc-nbr-send-community 10.20.246.15,ten1vrf1:1::1,both --ipv4-uc-nbr-add-path-capability 10.20.246.15,ten1vrf1:25.1.1.2,send --ipv4-uc-nbr-add-path-advertise-all 10.20.246.15,ten1vrf1:25.1.1.2,true --ipv4-uc-nbr 10.20.246.15,ten1vrf1:25.1.1.2,5900 --ipv4-uc-nbr-add-path-advertise-all 10.20.246.15,ten1vrf1:25.1.1.2,true --ipv6-uc-nbr 10.20.246.15,ten1vrf1:1::1,5900 --ipv6-uc-nbr-add-path-advertise-best 10.20.246.15,ten1vrf1:1::1,2 --ipv6-uc-nbr-add-path-capability 10.20.246.15,ten1vrf1:1::1,both --ipv6-uc-nbr-add-path-advertise-best 10.20.246.15,ten1vrf1:1::1,2 --ipv6-uc-nbr-add-path-advertise-group-best 10.20.246.15,ten1vrf1:1::1,true
(efa:root)root@Server41:~# efa tenant service bgp peer create --name customer_1 --tenant tv3 \ --ipv4-uc-nbr 10.20.49.119,v1:10.10.10.11,95001 \ --ipv4-uc-nbr-md5-password 10.20.49.119,v1:10.10.10.11,password \ --ipv4-uc-nbr-bfd 10.20.49.119,v1:10.10.10.11,true,50,5000,50 \ --ipv4-uc-nbr-next-hop-self 10.20.49.119,v1:10.10.10.11,always \ --ipv4-uc-nbr-update-source-ip 10.20.49.119,v1:10.10.10.11,10.11.12.13 \ --ipv4-uc-nbr-remove-private-as 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-default-originate 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-default-originate-route-map 10.20.49.119,v1:10.10.10.11,rt1 \ --ipv4-uc-nbr-route-map 10.20.49.119,v1:10.10.10.11,customer_1_v4_in,in \ --ipv4-uc-nbr-prefix-list 10.20.49.119,v1:10.10.10.11,customer_1_v4_out,out \ --ipv4-uc-nbr-send-community 10.20.49.119,v1:10.10.10.11,all \ --ipv4-uc-nbr-add-path-capability 10.20.49.119,v1:10.10.10.11,both \ --ipv4-uc-nbr-add-path-advertise-all 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-add-path-advertise-best 10.20.49.119,v1:10.10.10.11,16 \ --ipv4-uc-nbr-add-path-advertise-group-best 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-activate-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-default-originate-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-default-originate-route-map-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,rt1 \ --ipv4-uc-nbr-send-community-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,all \ --ipv4-uc-nbr-add-path-capability-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,both \ --ipv4-uc-nbr-add-path-advertise-all-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-add-path-advertise-best-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,16 \ --ipv4-uc-nbr-add-path-advertise-group-best-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,true \ --ipv4-uc-nbr-route-map-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,customer_1__v6_in,in \ --ipv4-uc-nbr-prefix-list-in-ipv6-uc-af 10.20.49.119,v1:10.10.10.11,customer_1__v6_out,out
(efa:root)root@Server41:~# efa tenant service bgp peer update --name customer_1 --tenant tv3 --operation peer-add \ --ipv4-uc-nbr 10.20.49.118,v1:10.10.10.12,95001 \ --ipv4-uc-nbr-md5-password 10.20.49.118,v1:10.10.10.12,password \ --ipv4-uc-nbr-bfd 10.20.49.118,v1:10.10.10.12,true,50,5000,50 \ --ipv4-uc-nbr-next-hop-self 10.20.49.118,v1:10.10.10.12,always \ --ipv4-uc-nbr-update-source-ip 10.20.49.118,v1:10.10.10.12,10.11.12.12 \ --ipv4-uc-nbr-remove-private-as 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-default-originate 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-default-originate-route-map 10.20.49.118,v1:10.10.10.12,rt1 \ --ipv4-uc-nbr-route-map 10.20.49.118,v1:10.10.10.12,customer_1_v4_in,in \ --ipv4-uc-nbr-prefix-list 10.20.49.118,v1:10.10.10.12,customer_1_v4_out,out \ --ipv4-uc-nbr-send-community 10.20.49.118,v1:10.10.10.12,all \ --ipv4-uc-nbr-add-path-capability 10.20.49.118,v1:10.10.10.12,both \ --ipv4-uc-nbr-add-path-advertise-all 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-add-path-advertise-best 10.20.49.118,v1:10.10.10.12,16 \ --ipv4-uc-nbr-add-path-advertise-group-best 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-activate-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-default-originate-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-default-originate-route-map-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,rt1 \ --ipv4-uc-nbr-send-community-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,all \ --ipv4-uc-nbr-add-path-capability-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,both \ --ipv4-uc-nbr-add-path-advertise-all-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-add-path-advertise-best-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,16 \ --ipv4-uc-nbr-add-path-advertise-group-best-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,true \ --ipv4-uc-nbr-route-map-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,customer_1__v6_in,in \ --ipv4-uc-nbr-prefix-list-in-ipv6-uc-af 10.20.49.118,v1:10.10.10.12,customer_1__v6_out,out(efa:root)root@Server41:~# efa tenant service bgp peer show --detail ================================================================================== Name : customer_1 Tenant : tv3 State : bgp-peer-created Description : Static Peer ----------- Device IP : 10.20.49.119 VRF : v1 AFI : ipv4 SAFI : unicast Remote IP : 10.10.10.11 Remote ASN : 95001 Activate : true Next Hop Self : always Update Source IP : 10.11.12.13 BFD Enabled : true BFD Interval : 50 BFD Rx : 5000 BFD Multiplier : 50 MD5 Password : $9$MCgKGaNt6OASX68/7TC6Lw== Remove Private AS : true Default Originate : true Default Originate Route Map : rt1 Send Community : all Prefix List In : Prefix List Out : customer_1__v4_out Route Map In : customer_1__v4_in Route Map Out : Add Path Capability : both Add Path Advertise : All, Group Best, Best 16 Dev State : provisioned App State : cfg-in-sync --Multi protocol capability-- AFI : ipv6 SAFI : unicast Activate : true Default Originate : true Default Originate Route Map : rt1 Send Community : all Prefix List In : Prefix List Out : customer_1__v6_out Route Map In : customer_1__v6_in Route Map Out : Add Path Capability : both Add Path Advertise : All, Group Best, Best 16 Dev State : provisioned App State : cfg-in-sync Device IP : 10.20.49.118 VRF : v1 AFI : ipv4 SAFI : unicast Remote IP : 10.10.10.12 Remote ASN : 95001 Activate : true Next Hop Self : always Update Source IP : 10.11.12.12 BFD Enabled : true BFD Interval : 50 BFD Rx : 5000 BFD Multiplier : 50 MD5 Password : $9$MCgKGaNt6OASX68/7TC6Lw== Remove Private AS : true Default Originate : true Default Originate Route Map : rt1 Send Community : all Prefix List In : Prefix List Out : customer_1__v4_out Route Map In : customer_1__v4_in Route Map Out : Add Path Capability : both Add Path Advertise : All, Group Best, Best 16 Dev State : provisioned App State : cfg-in-sync --Multi protocol capability-- AFI : ipv6 SAFI : unicast Activate : true Default Originate : true Default Originate Route Map : rt1 Send Community : all Prefix List In : Prefix List Out : customer_1__v6_out Route Map In : customer_1__v6_in Route Map Out : Add Path Capability : both Add Path Advertise : All, Group Best, Best 16 Dev State : provisioned App State : cfg-in-sync Dynamic Peer ------------ 0 Records ==================================================================================