IEOC - Internetwork Expert's Online Community

Welcome to Internetwork Expert's Online Community - IEOC - a place for CCIE and CCENT candidates to connect, share, and learn. Our Online Community features CCIE forums and discussions for all tracks including Routing & Switching, Voice, Security, Service Provider, and Storage. Through these online communities you can discuss your questions with thousands of your peers, hundreds of CCIE's and Internetwork Expert's own team of world renowned CCIE instructors and authors, Brian Dennis - Quintuple CCIE #2210, Scott Morris - Quad CCIE #4713, Brian McGahan – Triple CCIE #8593, Petr Lapukhov - Quad CCIE #16379, Anthony Sequeira - CCIE #15626, Keith Barker - Dual CCIE #6783, and Marvin Greenlee - Triple CCIE #12237.

Latest post 11-29-2009 8:19 AM by dcarley04. 0 replies.

Page 1 of 1 (1 items)
	Sort Posts: Previous Next

11-29-2009 8:19 AM

dcarley04
Joined on 08-17-2008
Associate
Points 330

RTBHR - Black Hole

Reply Contact

I just got done looking at Scott's TCPMag.com article on black hole routing and I can't seem to duplicate his configs w/o getting an IOS error message? Everything appears fine until I try applying the KILLROUTES route-map to the neighbor OUTBOUND? Can someone please tell me what i am doing wrong?

Cisco IOS Software, C2600 Software (C2600-ADVENTERPRISEK9-M), Version 12.4(9)T7, RELEASE SOFTWARE (fc3)

ip route 1.1.1.1 255.255.255.255 Null0
ip route 100.100.100.0 255.255.255.0 Null0 tag 86
ip route 192.0.0.0 255.0.0.0 Null0 tag 86
ip route 200.200.200.0 255.255.255.0 Null0 tag 86

route-map KillRoutes permit 10
match tag 86
!
route-map NH-Change permit 10
match tag 86
set ip next-hop 1.1.1.1
!
route-map NH-Change permit 20

Rack1R1(config-router)#neigh 192.168.1.7 route-map NH-Change out
% "NH-Change" used as BGP outbound route-map, tag match not supported ***here is the error that i get***

router bgp 1
no synchronization
bgp log-neighbor-changes
redistribute static route-map KillRoutes
neighbor 192.168.1.7 remote-as 1
neighbor 192.168.1.7 route-map NH-Change out
no auto-summary

SW1 - An IBGP neighbor is getting these routes, but as you can see the next-hop IP isn't 1.1.1.1 as needed, it is still 192.168.1.1?

Rack1SW1(config)#do sh ip bgp
BGP table version is 42, local router ID is 150.1.7.7
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*>i100.100.100.0/24 192.168.1.1              0    100      0 ?
*>i192.0.0.0/8      192.168.1.1              0    100      0 ?
*>i200.200.200.0    192.168.1.1              0    100      0 ?

SW1 - Now as an EBGP neighbor and this still isn't working?

Rack1SW1(config)#do sh ip route 1.1.1.1
Routing entry for 1.1.1.1/32
Known via "static", distance 1, metric 0 (connected)
Routing Descriptor Blocks:
* directly connected, via Null0
Route metric is 0, traffic share count is 1

Rack1SW1(config)#do sh ip bgp
BGP table version is 4, local router ID is 150.1.7.7
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
*> 100.100.100.0/24 192.168.1.1              0             0 1 ?
*> 192.0.0.0/8      192.168.1.1              0             0 1 ?
*> 200.200.200.0    192.168.1.1              0             0 1 ?

Can someone please tell me what i am doing wrong? Huh?