Bug ID 1031425: Provide a configuration flag to disable BGP peer-id check.

Last Modified: Apr 21, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
16.1.0, 16.0.1.2, 16.0.1.1, 15.1.5, 15.1.4, 15.1.3.1, 15.1.3, 14.1.4.3, 14.1.4.2, 14.1.4.1, 14.1.4

Fixed In:
16.1.2.2, 15.1.5.1, 14.1.4.6

Opened: Jul 05, 2021
Severity: 4-Minor

Symptoms

A fix for ID 945265 (https://cdn.f5.com/product/bugtracker/ID945265.html) introduced strict checking of a peer-id. This check might be not desired in some configurations.

Impact

BIG-IP will not pass the NLRIs between two eBGP peers. The following message can be seen in debug logs: 172.20.10.18-Outgoing [RIB] Announce Check: 0.0.0.0/0 Route Remote Router-ID is same as Remote Router-ID

Conditions

EBGP peering with two routers in the same autonomous system, configured with the same peer-id.

Workaround

Change peer-ids to be unique on eBGP peers.

Fix Information

New, neighbor-specific, af-specific configuration option is provided to allow routes to be passed to external peers sharing the same router-id. The check is done on egress, so the configuration should be changed towards the peer that is supposed to receive a route. router bgp 100 bgp graceful-restart restart-time 120 neighbor as200 peer-group neighbor as200 remote-as 200 neighbor as200 disable-peerid-check neighbor 172.20.8.16 peer-group as200 neighbor 172.20.8.16 disable-peerid-check neighbor 172.20.10.18 peer-group as200 neighbor 172.20.10.18 disable-peerid-check ! address-family ipv6 neighbor as200 activate neighbor as200 disable-peerid-check neighbor 172.20.8.16 activate neighbor 172.20.8.16 disable-peerid-check neighbor 172.20.10.18 activate neighbor 172.20.10.18 disable-peerid-check exit-address-family When configured on a single neighbor it will cause session to be re-established. When configured on a peer-group a manual session restart is required for changes to take effect.

Behavior Change