Route precedence when both Static Route and BGP are configured in Prisma Access

Route precedence when both Static Route and BGP are configured in Prisma Access

3925
Created On 07/19/23 04:48 AM - Last Modified 01/24/25 04:00 AM


Symptom


Customer configure Static Route and BGP as below.

  • Remote Networks A: Static Route 10.0.0.0/8
  • Remote Networks B: BGP 10.1.0.0/16

For traffic to 10.1.0.0/16, "Remote Networks B: BGP 10.1.0.0/16" takes precedence since it has the longest prefix match (most specific match).

Environment


  • Prisma Access Remote Networks
  • Static Routes
  • BGP

Resolution


As per Enable Routing for Your Remote Network (Cloud Management):

  1. If you configure both static routes and enable BGP, the static routes take precedence.
  2. But the subnet mask/prefix has the priority than Static or BGP.
  3. In case the subnets are the same, similar to:
    • Remote Networks A: Static Route 10.1.0.0/16
    • Remote Networks B: BGP 10.1.0.0/16
  4. Now "Remote Networks A: Static Route 10.1.0.0/16" takes precedence as per above document.
  5. If the Subnets are different, then the smaller subnet (longest match) takes preference. Example: BGP route of 10.1.0.0/16 takes precedence over Static route of 10.0.0.0/8.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000bqU3CAI&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail