Reply
New Member
Posts: 5
Registered: ‎04-23-2017
Kudos: 1

Ospf type 3 lsa routes filter

Hi,

 

Does anyone know how to filter type 3 lsa on ABR between area's

 

In Cisco You need to create a prefix-list:

 

ip prefix-list Deny_Test_Route deny 192.0.2.0/24 le 32
ip prefix-list Deny_Test_Route permit 0.0.0.0/0 le 32

 

And then apply it to the area :

 

router ospf 1
area 10 filter-list prefix Deny_Test_Route out

On the edgerouter I do not know how to do it

I will be grateful for the advice

 

Best Regards

Kuba

New Member
Posts: 23
Registered: ‎12-27-2014

Re: Ospf type 3 lsa routes filter

Hi,

 

Did you find out how to do this?

New Member
Posts: 5
Registered: ‎04-23-2017
Kudos: 1

Re: Ospf type 3 lsa routes filter

Unfortunately not

Senior Member
Posts: 5,231
Registered: ‎01-04-2017
Kudos: 729
Solutions: 262

Re: Ospf type 3 lsa routes filter

uname@edge# set protocols ospf access-list 23 import
uname@edge# set policy access-list 23 rule 10 
Possible completions:
  action	Action to take on networks matching this rule [REQUIRED]
  description	Description for this rule
  destination	Destination network or address
  source	Source network or address to match
      
[edit]

Not exactly the same thing, as it doesn't appear you can add them based on the area.  But may help do what you need.

New Member
Posts: 23
Registered: ‎12-27-2014

Re: Ospf type 3 lsa routes filter

Hi thanks for your response.

 

I did think that could be it. Ill test.

 

Why wouldnt it be a prefix list though? or is that just for BGP?

Senior Member
Posts: 5,231
Registered: ‎01-04-2017
Kudos: 729
Solutions: 262

Re: Ospf type 3 lsa routes filter

I can't answer that, maybe it's a limitation with the underlying software.
New Member
Posts: 23
Registered: ‎12-27-2014

Re: Ospf type 3 lsa routes filter

Hi Sorry i couldnt get it to work with a network range? Dont suppose you got an example... Sorry to be a pain :-)
Senior Member
Posts: 5,231
Registered: ‎01-04-2017
Kudos: 729
Solutions: 262

Re: Ospf type 3 lsa routes filter

[ Edited ]

I just looked into this further. It does not appear EdgeOS (Or Vyatta) let's you filter LSA routes. It may be a underlying software issue or maybe because it goes against best practice, I don't really have an answer for you on the why.

 

I just noticed you specifically mentioned type 3  lsa.  I was refering to type 1

Senior Member
Posts: 5,231
Registered: ‎01-04-2017
Kudos: 729
Solutions: 262

Re: Ospf type 3 lsa routes filter

Did you try export instead of import?
New Member
Posts: 23
Registered: ‎12-27-2014

Re: Ospf type 3 lsa routes filter

No not tried export yet. 

 

Found this video. seeing if i can use that, but obviously make it work for edgemax

 

https://www.youtube.com/watch?v=t8ZCFMM0i9g

New Member
Posts: 23
Registered: ‎12-27-2014

Re: Ospf type 3 lsa routes filter

[ Edited ]

Got this working. You need by the looks of it to also have a permit any as well. Then apply this policy/rule to the access-list on OSPF. 

 

Anyone want any further clarity let me know. 

 

Craig@ER# show policy access-list
access-list 1 {
rule 1 {
action deny
source {
inverse-mask 0.0.0.255
network 10.245.56.0
}
}
rule 2 {
action permit
source {
any
}
}
}
[edit]

 

If you dont put the permit rule in, and just do the deny. All the routes get dropped. Makes sense i suppose. 

Senior Member
Posts: 5,231
Registered: ‎01-04-2017
Kudos: 729
Solutions: 262

Re: Ospf type 3 lsa routes filter

cool. good to know. Mark post as answered.
Reply