Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

issue about sdwan bgp routing

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

issue about sdwan bgp routing

L1 Bithead

HI , Bro

I setup a hub-spoke sdwan on my pnet lab

Hub  can learn site1 and site2 internal routing , but it can not pass  these  routing entry  between  site1 and site2.
which cause hub and spoke(site1 and site2) can access  each other  ,   but the spoke (site1 and site2)  can not access each other.

 

2 REPLIES 2

Cyber Elite
Cyber Elite

Hi @miaocongcong ,

 

What is the next hop for the prefixes in the Local RIB on the spokes?  Is that IP address in the routing table?  If the BGP next hop is not reachable, the prefix will not be added to the routing table.

 

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClL1CAK&refURL=http%3A%2F%...

 

Thanks,

 

Tom

Help the community: Like helpful comments and mark solutions.

L1 Bithead

@miaocongcong by default hub will not pass branch routes to all other branches. in hub/spoke topology assumption is that for any branch to talk to another branch, it has to travers hub so in this case a summary route for all branch subnets advertised from branch is adequate and can direct traffic between branches.
If you need to pass branch routes to each other via hub you can create BGP import rule on hub to append hub specific community string on all received routes. This community is hashed from hub specific loopback, so it is unique for each site. More details on this are available here: https://docs.paloaltonetworks.com/content/dam/techdocs/en_US/pdf/sd-wan/experts/pan-os-sd-wan-auto-p...

SR
  • 543 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!