API tools faq
paste
Advertisement
pheonix198

RTR2

pheonix198
Nov 5th, 2019
147
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.79 KB | None | 0 0
raw download clone embed print report
  1. ========================================
  2. RTR2 - ROUTER 2 - BGPD.CONF - SANITIZED
  3. ========================================
  4. ! Zebra configuration saved from vty
  5. !
  6. router bgp XYZ
  7. bgp router-id 10.124.1.107
  8. bgp log-neighbor-changes
  9. redistribute static route-map STATIC-CONNECTED-BGP
  10. neighbor COMCAST peer-group
  11. neighbor COMCAST remote-as 7922
  12. neighbor COMCAST description ISP-Comcastic
  13. neighbor COMCAST route-map NO-DEFAULT-IN in
  14. neighbor COMCAST route-map COMCAST-OUT out
  15. neighbor COMCAST2 peer-group
  16. neighbor COMCAST2 remote-as 7922
  17. neighbor COMCAST2 description Comcast Secondary
  18. neighbor COMCAST2 ebgp-multihop 255
  19. neighbor COMCAST2 route-map PROVIDERS-IN in
  20. neighbor COMCAST2 route-map NO-ROUTES-OUT out
  21. neighbor DE-PREF-PROVIDERS peer-group
  22. neighbor DE-PREF-PROVIDERS description Providers that we want to de-pref
  23. no neighbor DE-PREF-PROVIDERS send-community
  24. neighbor DE-PREF-PROVIDERS route-map DE-PREF-IN in
  25. neighbor DE-PREF-PROVIDERS route-map PREPEND-OUT out
  26. neighbor PROVIDERS peer-group
  27. neighbor PROVIDERS description Internet Service Providers
  28. no neighbor PROVIDERS send-community
  29. neighbor PROVIDERS route-map PROVIDERS-IN in
  30. neighbor PROVIDERS route-map EBGP-OUT out
  31. neighbor iBGP peer-group
  32. neighbor iBGP remote-as XYZ
  33. neighbor iBGP description "iBGP Sessions"
  34. neighbor iBGP update-source p1p1
  35. neighbor iBGP next-hop-self
  36. neighbor iBGP soft-reconfiguration inbound
  37. neighbor 33.33.33.177 remote-as ZZZ
  38. neighbor 33.33.33.177 peer-group PROVIDERS
  39. neighbor 50.50.50.105 peer-group COMCAST
  40. neighbor 60.60.60.86 peer-group COMCAST2
  41. neighbor 111.111.111.145 peer-group iBGP
  42. !
  43. ip prefix-list ALL-ROUTES description Match All Routes
  44. ip prefix-list ALL-ROUTES seq 10 permit 0.0.0.0/0 le 32
  45. ip prefix-list DEFAULT-ROUTE description Match Default Route
  46. ip prefix-list DEFAULT-ROUTE seq 10 permit 0.0.0.0/0
  47. ip prefix-list MY-ROUTES description Our BGP routes
  48. ip prefix-list MY-ROUTES seq 10 permit 111.111.111.0/24
  49. ip prefix-list MY-ROUTES seq 20 permit 33.33.0.0/24
  50. ip prefix-list RFC1918 seq 10 permit 10.0.0.0/8 le 32
  51. ip prefix-list RFC1918 seq 20 permit 172.16.0.0/12 le 32
  52. ip prefix-list RFC1918 seq 30 permit 192.168.0.0/16 le 32
  53. ip prefix-list STATIC-CONNECTED-BGP description BGP Redistribution List
  54. ip prefix-list STATIC-CONNECTED-BGP seq 10 permit 111.111.111.0/24 le 32
  55. ip prefix-list STATIC-CONNECTED-BGP seq 20 permit 33.33.0.0/24 le 32
  56. !
  57. ip community-list standard POISON-ROUTES permit no-export
  58. !
  59. route-map EBGP-OUT deny 10
  60. match ip address prefix-list RFC1918
  61. !
  62. route-map EBGP-OUT deny 20
  63. match community POISON-ROUTES
  64. !
  65. route-map EBGP-OUT permit 30
  66. match ip address prefix-list MY-ROUTES
  67. !
  68. route-map PROVIDERS-IN deny 10
  69. match ip address prefix-list RFC1918
  70. !
  71. route-map PROVIDERS-IN permit 20
  72. set community no-export
  73. set local-preference 100
  74. set metric 5000
  75. !
  76. route-map PREPEND-OUT deny 10
  77. match ip address prefix-list RFC1918
  78. !
  79. route-map PREPEND-OUT deny 20
  80. match community POISON-ROUTES
  81. !
  82. route-map PREPEND-OUT permit 30
  83. match ip address prefix-list MY-ROUTES
  84. set as-path prepend XYZ XYZ XYZ
  85. !
  86. route-map STATIC-CONNECTED-BGP permit 10
  87. match ip address prefix-list STATIC-CONNECTED-BGP
  88. set origin igp
  89. !
  90. route-map DE-PREF-IN deny 10
  91. match ip address prefix-list RFC1918
  92. !
  93. route-map DE-PREF-IN permit 20
  94. set community no-export
  95. set local-preference 90
  96. set metric 5000
  97. !
  98. route-map COMCAST-OUT deny 10
  99. match ip address prefix-list RFC1918
  100. !
  101. route-map COMCAST-OUT deny 20
  102. match community POISON-ROUTES
  103. !
  104. route-map COMCAST-OUT permit 30
  105. match ip address prefix-list MY-ROUTES
  106. set community 7922:999
  107. !
  108. route-map NO-ROUTES-OUT deny 10
  109. match ip address prefix-list ALL-ROUTES
  110. !
  111. route-map NO-DEFAULT-IN deny 10
  112. match ip address prefix-list RFC1918
  113. !
  114. route-map NO-DEFAULT-IN deny 20
  115. match ip address prefix-list DEFAULT-ROUTE
  116. !
  117. route-map NO-DEFAULT-IN permit 30
  118. set community no-export
  119. set local-preference 100
  120. set metric 5000
  121. !
  122. line vty
  123. !
  124.  
  125. ========================================
  126. RTR2 - ROUTER 2 - ZEBRA.CONF - SANITIZED
  127. ========================================
  128. ! Zebra configuration saved from vty
  129. !
  130. hostname rtr2.domain.com
  131. !
  132. interface em1
  133. description Management
  134. ip address 10.124.1.107/19
  135. ipv6 nd suppress-ra
  136. !
  137. interface em2
  138. ipv6 nd suppress-ra
  139. !
  140. interface em3
  141. ipv6 nd suppress-ra
  142. !
  143. interface em4
  144. ipv6 nd suppress-ra
  145. !
  146. interface lo
  147. !
  148. interface p1p1
  149. description To rtr1
  150. ip address 111.111.111.146/30
  151. ipv6 nd suppress-ra
  152. !
  153. interface p1p2
  154. description To Firewalls
  155. ip address 111.111.111.141/28
  156. ipv6 nd suppress-ra
  157. !
  158. interface p2p1
  159. description To ISP-BRAVO
  160. ip address 33.33.33.178/29
  161. ipv6 nd suppress-ra
  162. !
  163. interface p2p2
  164. description To ISP-Comcastic
  165. ip address 50.50.50.106/29
  166. ipv6 nd suppress-ra
  167. !
  168. ip route 33.33.0.0/24 111.111.111.129
  169. ip route 60.60.60.86/32 50.50.50.105
  170. ip route 111.111.111.0/24 Null0
  171. ip route 111.111.111.0/25 111.111.111.129
  172. !
  173. ip prefix-list ALL-ROUTES description Match All Routes
  174. ip prefix-list ALL-ROUTES seq 10 permit 0.0.0.0/0 le 32
  175. ip prefix-list DEFAULT-ROUTE description Match Default Route
  176. ip prefix-list DEFAULT-ROUTE seq 10 permit 0.0.0.0/0
  177. ip prefix-list MY-ROUTES description Our BGP routes
  178. ip prefix-list MY-ROUTES seq 10 permit 111.111.111.0/24
  179. ip prefix-list MY-ROUTES seq 20 permit 33.33.0.0/24
  180. ip prefix-list RFC1918 seq 10 permit 10.0.0.0/8 le 32
  181. ip prefix-list RFC1918 seq 20 permit 172.16.0.0/12 le 32
  182. ip prefix-list RFC1918 seq 30 permit 192.168.0.0/16 le 32
  183. ip prefix-list STATIC-CONNECTED-BGP description BGP Redistribution List
  184. ip prefix-list STATIC-CONNECTED-BGP seq 10 permit 111.111.111.0/24 le 32
  185. ip prefix-list STATIC-CONNECTED-BGP seq 20 permit 33.33.0.0/24 le 32
  186. !
  187. route-map EBGP-OUT deny 10
  188. match ip address prefix-list RFC1918
  189. !
  190. route-map EBGP-OUT deny 20
  191. !
  192. route-map EBGP-OUT permit 30
  193. match ip address prefix-list MY-ROUTES
  194. !
  195. route-map PROVIDERS-IN deny 10
  196. match ip address prefix-list RFC1918
  197. !
  198. route-map PROVIDERS-IN permit 20
  199. !
  200. route-map PREPEND-OUT deny 10
  201. match ip address prefix-list RFC1918
  202. !
  203. route-map PREPEND-OUT deny 20
  204. !
  205. route-map PREPEND-OUT permit 30
  206. match ip address prefix-list MY-ROUTES
  207. !
  208. route-map STATIC-CONNECTED-BGP permit 10
  209. match ip address prefix-list STATIC-CONNECTED-BGP
  210. !
  211. route-map DE-PREF-IN deny 10
  212. match ip address prefix-list RFC1918
  213. !
  214. route-map DE-PREF-IN permit 20
  215. !
  216. route-map COMCAST-OUT deny 10
  217. match ip address prefix-list RFC1918
  218. !
  219. route-map COMCAST-OUT deny 20
  220. !
  221. route-map COMCAST-OUT permit 30
  222. match ip address prefix-list MY-ROUTES
  223. !
  224. route-map NO-ROUTES-OUT deny 10
  225. match ip address prefix-list ALL-ROUTES
  226. !
  227. route-map NO-DEFAULT-IN deny 10
  228. match ip address prefix-list RFC1918
  229. !
  230. route-map NO-DEFAULT-IN deny 20
  231. match ip address prefix-list DEFAULT-ROUTE
  232. !
  233. route-map NO-DEFAULT-IN permit 30
  234. !
  235. ip forwarding
  236. !
  237. !
  238. line vty
  239. !
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!