402
Step Command
Remarks
8.
Configure a filtering policy to
filter the received routes.
filter-policy
{
acl-number
|
ip-prefix
ip-prefix-name
}
import
Optional.
By default, BGP does not filter the
received routes.
BGP checks routing loops by examining AS numbers. When EBGP is used, the MCE advertises routing
information carrying the local AS number to the site and then receives routing updates from the site. The
routing updates carry the AS number of the MCE, so the MCE discards them to avoid routing loops. To
enable the MCE to receive such routes, configure the MCE to allow routing loops.
Routes redistributed from OSPF to BGP on the MCE have their OSPF attributes removed. To enable BGP
to distinguish routes redistributed from different OSPF domains, you must enable the redistributed routes
to carry the OSPF domain ID by configuring the
domain-id
command in OSPF view. The domain ID is
added to BGP VPN routes as an extended community attribute.
BGP runs in a BGP VPN instance in the same way as it runs in a normal network. For more information
about BGP, see
Layer 3—IP Routing Configuration Guide
.
2.
Configure a VPN site:
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Enter BGP view.
bgp
as-number
N/A
3.
Configure the MCE as the
EBGP peer.
peer
{
group-name
|
ip-address
}
as-number
as-number
N/A
4.
Redistribute the IGP routes of
the VPN.
import-route
protocol
[
process-id
]
[
med
med-value
|
route-policy
route-policy-name
] *
Optional.
A VPN site must advertise the VPN
network addresses it can reach to
the connected MCE.
Configuring IBGP between MCE and VPN site
If IBGP is used for exchanging routing information between an MCE and VPN sites, you must configure
a BGP peer for each VPN instance respectively, and redistribute the IGP routes of each VPN instance on
the VPN sites.
1.
Configure the MCE:
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Enter BGP view.
bgp
as-number
N/A
3.
Enter BGP-VPN instance view.
ipv4-family vpn-instance
vpn-instance-name
N/A
4.
Configure an IBGP peer.
peer
{
group-name
|
ip-address
}
as-number
as-number
N/A
5.
Configure the system to be the
RR and specify the peer as the
client of the RR.
peer
{
group-name
|
ip-address
}
reflect-client
Optional.
By default, no RR or RR client is
configured.