Optimize external aggregate rule at managed=local
hknutzen opened this issue · 1 comments
hknutzen commented
This topology
any1--r1--n2--r2--dst
with
- r2 is
- managed=local
- filter_only 10.2.0.0/16
- any1 containing only networks from 10.1.0.0/16
with this rule
permit any1 -> dst
currently would
- generate an ACL „permit any dst“ at r2
- show a warning „Missing rule for supernet rule“
To suppress this warning, an additional rule
permit any:[n2] -> dst
has currently to be defined.
This case should be optimized by netspoc.
- it should recognize, that any1 doesn’t contain any networks from 10.2.0.0/16
- hence, the rule is non local traffic at r2
- hence, no ACL has to be generated at r2
- hence, no additional rule has to be defined to suppress the warning