I am exploring different ways of breaking MPLS and today I am looking at MPLS LDP Inbound label binding filtering.
The config looks pretty straightforward
http://www.cisco.com/en/US/docs/ios/mpls/configuration/guide/mp_ldp_inbound_filtr.html
conf t
access-l 1 permit 192.168.1.0
mpls ldp neighbor 10.10.10.10 labels accept 1
According to my understanding this should filter any bindings in the ldp binding table except 192.168.1.0
Or am I not understanding this correctly?
As I have labbed this up and it does not appear to be working
R23#sh mpls ldp neigh detail
Peer LDP Ident: 10.1.1.21:0; Local LDP Ident 10.1.1.23:0
TCP connection: 10.1.1.21.646 - 10.1.1.23.28423
State: Oper; Msgs sent/rcvd: 18/18; Downstream; Last TIB rev sent 22
Up time: 00:03:47; UID: 5; Peer Id 1;
LDP discovery sources:
FastEthernet0/0; Src IP addr: 10.0.0.2
holdtime: 15000 ms, hello interval: 5000 ms
Addresses bound to peer LDP Ident:
10.1.1.21 10.0.0.2 10.0.0.1
Peer holdtime: 180000 ms; KA interval: 60000 ms; Peer state: estab
LDP inbound filtering accept acl: 1
R23#
When I do a sh mpls ldp binding I still see a lot of prefixes that are not 192.168.1.0?
R23#sh mpls ldp binding
tib entry: 10.0.0.0/31, rev 22
local binding: tag: 23
tib entry: 10.0.0.2/31, rev 2
local binding: tag: imp-null
tib entry: 10.0.0.4/31, rev 4
local binding: tag: imp-null
tib entry: 10.0.0.6/31, rev 20
local binding: tag: 22
tib entry: 10.0.0.8/31, rev 16
local binding: tag: 20
tib entry: 10.0.0.10/31, rev 18
local binding: tag: 21
tib entry: 10.1.1.21/32, rev 14
local binding: tag: 19
tib entry: 10.1.1.22/32, rev 12
local binding: tag: 18
tib entry: 10.1.1.23/32, rev 6
local binding: tag: imp-null
tib entry: 10.1.1.24/32, rev 10
local binding: tag: 17
tib entry: 10.1.1.25/32, rev 8
local binding: tag: 16
R23#
What am I missing?
I cleared the neighbor but surely overlooking something simple ?
Thanks
Roger