Hello,
We are setting up a new network, migrating from a baremetal network to an MPLS EVPN enabled network on QFX5200 and 5110.
We decided to preserve the internal AS across the whole infrastructure to ease our migration and avoid using aditionnal AS numbers.
The whole IS-IS/LDP/RSVP/BGP setup is in place and works great with routing-instances direct routes, however we are using BGP with one CE, namely our Firewall.
We've followed the following doc: https://www.juniper.net/documentation/en_US/junos/topics/usage-guidelines/vpns-configuring-layer-3-vpns-to-carry-ibgp-traffic.html
Routes received from the firewall do not propagate in the MPLS domain, the remote PE shows the following:
State: <Secondary Hidden Int Ext ProtectionCand>
Inactive reason: Unusable path
we have configured the "routing-options autonomous-system independent-domain" under the routing instance with no change. We've also tried the AS-override on top of it but still no luck
The PE have a policy-statement of "next-hop self" between them.
Am I forgetting something?