Hello All,
I am a newbie in trying to figure out Mikrotik BGP Routing Filters. (am trying to change a config from Cisco )

Short summary of what I am trying to achieve:-

At the moment, am trying to accomplish two things:

1. Trying to Advertise routes (our-cdir) to the BGP Peer, and send Communities along with the route.

With the default instance:- appending bpg community 11280:115
With the inap-mia-out filter - appending bgp community 65020:0

2. Trying to set or append bgp community 11280:666 to all the incoming routes from the peer (INAP-MIA).

here is what my config looks like (the bgp related config) Am running Mikrotik ver 5.5 on a X-86 (RouterMaxx )

(Some of the filter / chains are nested because they are to be re-used with other chains.
If someone can help me sort this out and correct my filters, I would be greatful for the assistance, and setting me straight.

Need less to say, at the moment, bpg is up, but the filters below are not working.

Thanks.
Faisal

/routing bgp instance
set default as=11280 client-to-client-reflection=no disabled=no
ignore-as-path-len=no name=default out-filter=snpy-redistribute
redistribute-connected=no redistribute-ospf=no redistribute-other-bgp=no
redistribute-rip=no redistribute-static=no router-id=68.142.24.178
routing-table=""

/routing bgp network
add disabled=no network=68.142.0.0/19 synchronize=no
add disabled=no network=207.0.204.0/22 synchronize=no

/routing bgp peer
add address-families=ip as-override=no default-originate=never disabled=no
hold-time=3m in-filter=inap-mia-in instance=default multihop=no name=
INAP-MIA nexthop-choice=default out-filter=inap-mia-out passive=no
remote-address=216.52.162.89 remote-as=12180 remove-private-as=yes
route-reflect=no tcp-md5-key="" ttl=default update-source=loopback1
use-bfd=no

/routing filter
add action=passthrough chain=our-cidr disabled=no invert-match=no prefix=
68.142.0.0/19 prefix-length=19-24

add action=passthrough chain=our-cidr disabled=no invert-match=no prefix=
207.0.204.0/22 prefix-length=22-24

add action=passthrough chain=not-to-specific disabled=no invert-match=no
prefix=0.0.0.0/0 prefix-length=0-24

add action=passthrough append-bgp-communities=65020:0 chain=inap-mia-out
disabled=no invert-match=no match-chain=our-cidr

add action=passthrough append-bgp-communities=11280:666 chain=inap-mia-in
disabled=no invert-match=no match-chain=not-to-specific

add action=passthrough append-bgp-communities=11280:115 bgp-origin="" chain=
snpy-redistribute disabled=no invert-match=no match-chain=our-cidr

as per manual
http://wiki.mikrotik.com/wiki/Manual:Routing/Routing_filters

“match-chain” - the name of the chain which is used to evaluate the route. If the chain accepts the route, ‘match-chain’ property produces a true match.

You have action=passthrough in those chains

also unset bgp-origin in last rule.

Thanks for the pointers and correction… so far am able to make this work.

ps. also found out a couple of things (bugs ?)…

1. If I modify the filter via Winbox, it insists on inserting ’ prefix = 0.0.0.0’ , the only way to remove it is to remove the rule and re-enter it via CLI..

2. I cannot set or append a BGP community XXXX:0 via winbox / gui, (it does not like the ‘0’), can only set it via command line.

3. I saw on one of the MUM presentations that Mikrotik was asking folks using ver.5.x to send in info to Support if they see Unclassified process in /Tools Profile … is that still valid request ? I am seeing an unclassified process on my box.
   
   
   Many Thanks in advance.

thank you for the reports, these are known winbox problems and will be fixed in the future.

If that unclassified process is not 0,1% - 1% then yes you can send supout.

Still nor repaired?