I've been trying to bring up a BGP link to my new ISP for a few days now and having difficulty. I'm running on an EX4200 switch. I'm receiving routes just fine, but not able to advertise any. I've followed the direction given in JUNOS Enterprise Routing, but my routes are being rejected. Now, I'm fully aware, as you'll see in the config, that we have no license for BGP. However, the BGP link is established and I'm receiving routes in spite of it. I guess I just need to know if part of being non-licensed is the inability to advertise. I've seen that in J-Series routers that the license is only required for BGP route reflection. I was hoping this was the same on the EX platform since the feature was at least partially working. If not, below is the configuration I've set up with identifying characteristics masked. Help would be much appreciated.
root@Eagle> show configuration | except SECRET-DATA | no-more
## Last commit: 2012-09-06 16:21:02 EDT by root
version 11.4R2.14;
system {
host-name Eagle;
time-zone America/New_York;
no-multicast-echo;
no-redirects;
no-ping-record-route;
no-ping-time-stamp;
internet-options {
icmpv4-rate-limit packet-rate 1000 bucket-size 5;
icmpv6-rate-limit packet-rate 1000 bucket-size 5;
source-quench;
tcp-drop-synfin-set;
}
ports {
console log-out-on-disconnect;
}
root-authentication {
}
radius-server {
172.18.131.25 {
source-address X.X.13.1;
}
}
radius-options {
password-protocol mschap-v2;
}
login {
message "\nThis equipment is the property of Ashland University.\nAccess is limited to authorized individuals in accordance\nwith the AUP.\n\nAll access is logged, and any unauthorized access may\nincur legal and/or University action.";
retry-options {
tries-before-disconnect 3;
backoff-factor 5;
}
class default {
idle-timeout 15;
}
user admin {
uid 2003;
class super-user;
}
password {
format sha1;
}
}
services {
ssh {
protocol-version v2;
rate-limit 4;
}
netconf {
ssh;
}
web-management {
https {
local-certificate ex-4200;
interface ae0.0;
}
session {
idle-timeout 15;
}
}
}
syslog {
user * {
any emergency;
}
file messages {
any notice;
authorization info;
}
file interactive-commands {
interactive-commands any;
}
file firewall {
firewall any;
}
file AAA {
authorization any;
}
}
ntp {
boot-server 172.18.131.30;
server 172.18.131.30 version 4;
}
}
chassis {
aggregated-devices {
ethernet {
device-count 1;
}
}
alarm {
management-ethernet {
link-down ignore;
}
}
}
interfaces {
ge-0/0/0 {
description "Uplink to ISP A";
unit 0 {
family inet {
address X.X.14.86/30;
}
}
}
ge-0/0/1 {
description "Uplink to ISP B";
unit 0 {
family ethernet-switching;
}
}
ge-0/0/2 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/3 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/4 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/5 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/6 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/7 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/8 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/9 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/10 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/11 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/12 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/13 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/14 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/15 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/16 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/17 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/18 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/19 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/20 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/21 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/22 {
disable;
unit 0 {
family ethernet-switching;
}
}
ge-0/0/23 {
unit 0 {
family inet {
address X.X.13.1/24;
}
}
}
ge-0/1/0 {
description "Uplink 1 to Routing Core";
enable;
ether-options {
802.3ad ae0;
}
}
xe-0/1/0 {
unit 0 {
family ethernet-switching;
}
}
ge-0/1/1 {
description "Uplink 2 to Routing Core";
disable;
ether-options {
802.3ad ae0;
}
}
xe-0/1/1 {
unit 0 {
family ethernet-switching;
}
}
ge-0/1/2 {
disable;
unit 0 {
family ethernet-switching;
}
}
xe-0/1/2 {
unit 0 {
family ethernet-switching;
}
}
ge-0/1/3 {
disable;
unit 0 {
family ethernet-switching;
}
}
lo0 {
unit 0 {
family inet {
address 127.0.0.1/32;
}
}
}
}
snmp {
location "Data Center";
contact "Help Desk";
community eaglemonitor {
authorization read-only;
}
}
routing-options {
aggregate {
route X.X.13.0/24;
}
generate {
route 0.0.0.0/0 {
preference 175;
}
}
autonomous-system 54XXX;
}
protocols {
##
## Warning: requires 'bgp' license
##
bgp {
group as_5XXX {
type external;
import as_5XXX_import;
export as_5XXX_export;
peer-as 5XXX;
neighbor X.X.14.85;
}
}
igmp-snooping {
vlan all;
}
rstp {
interface all {
disable;
}
}
lldp {
interface all;
}
lldp-med {
interface all;
}
}
policy-options {
policy-statement as_5XXX_export {
term Permit {
from {
protocol aggregate;
route-filter X.X.13.0/24 exact;
}
then accept;
}
}
policy-statement as_5XXX_import {
term Permit {
from {
protocol bgp;
as-path 5XXX_originate;
route-filter 0.0.0.0/0 exact;
}
then accept;
}
term Reject {
from protocol bgp;
then reject;
}
}
as-path 5XXX_originate "^5XXX$";
}
security {
certificates {
local {
ex-4200 {
}
}
}
}
ethernet-switching-options {
voip;
storm-control {
interface all;
}
}
poe {
interface all;
interface ge-0/0/0 {
disable;
}
interface ge-0/0/1 {
disable;
}
interface ge-0/0/2 {
disable;
}
interface ge-0/0/3 {
disable;
}
interface ge-0/0/4 {
disable;
}
interface ge-0/0/5 {
disable;
}
interface ge-0/0/6 {
disable;
}
interface ge-0/0/7 {
disable;
}
interface ge-0/0/8 {
disable;
}
interface ge-0/0/9 {
disable;
}
interface ge-0/0/10 {
disable;
}
}
{master:0}
root@Eagle> show route X.X.13.0/24 extensive
inet.0: 7 destinations, 9 routes (6 active, 0 holddown, 3 hidden)
X.X.13.0/24 (2 entries, 0 announced)
*Direct Preference: 0
Next hop type: Interface
Address: 0x2b700a8
Next-hop reference count: 1
Next hop: via ge-0/0/23.0, selected
State: <Active Int>
Local AS: 54XXX
Age: 19:36:06
Task: IF
AS path: I
X.X.13.1/32 (1 entry, 0 announced)
*Local Preference: 0
Next hop type: Local
Address: 0x274dc18
Next-hop reference count: 5
Next hop:
Interface: ge-0/0/23.0
State: <Active NoReadvrt Int>
Local AS: 54XXX
Age: 1d 18:22:05
Task: IF
AS path: I
{master:0}
root@Eagle> show route
inet.0: 7 destinations, 9 routes (6 active, 0 holddown, 3 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 *[BGP/170] 1d 17:54:57, localpref 100
AS path: 5XXX I
> to X.X.14.85 via ge-0/0/0.0
X.X.14.84/30 *[Direct/0] 1d 17:55:03
> via ge-0/0/0.0
X.X.14.86/32 *[Local/0] 1d 18:39:47
Local via ge-0/0/0.0
X.X.13.0/24 *[Direct/0] 19:36:15
> via ge-0/0/23.0
X.X.13.1/32 *[Local/0] 1d 18:22:14
Local via ge-0/0/23.0
224.0.0.22/32 *[IGMP/0] 1d 18:52:24
MultiRecv
{master:0}
root@Eagle> show route protocol aggregate hidden
inet.0: 7 destinations, 9 routes (6 active, 0 holddown, 3 hidden)
+ = Active Route, - = Last Active, * = Both
0.0.0.0/0 [Aggregate] 20:07:40
Reject
X.X.13.0/24 [Aggregate] 20:40:01
Reject