Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
08-27-2024 08:51 AM
HI , Bro
I setup a hub-spoke sdwan on my pnet lab
Hub can learn site1 and site2 internal routing , but it can not pass these routing entry between site1 and site2.
which cause hub and spoke(site1 and site2) can access each other , but the spoke (site1 and site2) can not access each other.
09-04-2024 07:58 AM
Hi @miaocongcong ,
What is the next hop for the prefixes in the Local RIB on the spokes? Is that IP address in the routing table? If the BGP next hop is not reachable, the prefix will not be added to the routing table.
Thanks,
Tom
09-26-2024 07:49 AM
@miaocongcong by default hub will not pass branch routes to all other branches. in hub/spoke topology assumption is that for any branch to talk to another branch, it has to travers hub so in this case a summary route for all branch subnets advertised from branch is adequate and can direct traffic between branches.
If you need to pass branch routes to each other via hub you can create BGP import rule on hub to append hub specific community string on all received routes. This community is hashed from hub specific loopback, so it is unique for each site. More details on this are available here: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/sd-wan/experts/pan-os-sd-wan-auto-p...
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
