 | Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
Configure a domain ID as a match condition for inbound Layer 3 VPN routes. Then configure an export policy to tag the extended community ID and the route distinguisher onto outgoing routes:
- [edit]
- routing-instances {
-
- CE_A {
- instance-type vrf;
- interface ge-0/1/0.0;
- route-distinguisher 1:100;
- vrf-import vrf_import_routes;
- vrf-export vrf_export_routes;
-
- protocols {
-
- ospf {
- domain-id 1.1.1.1; #match for inbound routes
- route-type-community vendor;
- export vrf_import_routes;
-
- area 0.0.0.0 {
- interface ge-0/1/0.0;
- }
- }
- }
- }
- }
- policy-options {
-
- policy-statement vrf_export_routes {
-
- term a {
- from protocol ospf;
-
- then {
- community add export_target;
- accept;
- }
- }
-
- term b {
- then reject;
- }
- }
- community export_target members [ target:1:100 domain-id:1.1.1.1:0
];
- }
Leak a noninstance route into the instance routing table:
- [edit]
- routing-options {
-
- interface-routes {
- rib-group inet inet_to_site_A;
- }
- }
- [edit]
- rib-groups {
-
- inet_to_site_A {
- import-rib [ inet.0 site_A.inet.0 ];
- }
- }
- [edit]
- protocols {
-
- ospf {
- rib-group inet_to_site_A;
- }
- }
- [edit]
- policy-options {
-
- policy-statement announce_to_ce {
-
- term a {
-
- from {
- protocol direct;
- interface lo0.0;
- }
- then accept;
- }
- }
- }
- [edit]
- routing-instances {
-
- site_A {
-
- protocols {
-
- ospf {
- export announce_to_ce;
- }
- }
- }
- }
| Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |