How to redistribute only the default static route to BGP?

How to redistribute only the default static route to BGP?

38113
Created On 12/13/19 23:29 PM - Last Modified 08/05/20 21:59 PM


Objective


  • Only Default static route of 0.0.0.0/0 needs to be redistributed into BGP. 

Environment


  • Palo Alto Firewall.
  • Any PAN-OS.
  • BGP configured.

Procedure


  1. Create a redistribution Rule using Network > Virtual Routers > (name) > BGP > Redist Rules 
  2. In the Name section, use 0.0.0.0/0 and click on Enable.
  3. Fill in the metric, origin and other fields if needed or let them blank.
  4. Click on OK. 
Configure Redist Rules
  1. In the subsequent menu, Click OK and commit.
Redist Rules
  1. BGP local RIB table will now display only the default route (Network> Virtual Routers < (name) > More Runtime Stats > BGP > Local RIB). This is advertised to neighbors depending on the export policy configured.
Local RIB

Additional Information


  • Generally to redistribute static routes to BGP, Redistribution profile is configured and referenced under Redist Rules.
  • If Redistribution Profile is configured to match default route of 0.0.0.0 similar to that configured below, all static routes appear in the RIB table
  • This is because 0.0.0.0/0 is treated as "any", this any configured static route will match the profile.
  • The above solution is a workaround for just installing default static route by not installing any other static routes in the RIB table.
  • Export policy configured on BGP controls to which neighbor the default route is advertised.
Redistibution Profile
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PNqXCAW&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language