Verifying that MPLS LDP Inbound Label Bindings are FilteredIf inbound filtering is enabled, perform the following steps to verify that inbound label bindings are
filtered:
SUMMARY STEPS
1. Enter the show mpls ldp neighbor command to show the status of the LDP session, including the name
or number of the ACL configured for inbound filtering.
2. Enter the show ip access-list command to display the contents of all current IP access lists or of a
specified access list.
3. Enter the show mpls ldp bindingscommand to verify that the LSR has remote bindings only from a
specified peer for prefixes permitted by the access list.
DETAILED STEPS
Step 1 Enter the show mpls ldp neighbor command to show the status of the LDP session, including the name or number of
the ACL configured for inbound filtering.
Example:
show mpls ldp neighbor
[vrf
vpn-name
][
address
|
interface
] [detail
Note To display information about inbound label binding filtering, you must enter the detail keyword.
Following is sample output from the show mpls ldp neighbor command.
Example:
Router# show mpls ldp neighbor 10.12.12.12 detail
Peer LDP Ident: 10.12.12.12:0; Local LDP Ident 10.13.13.13:0
TCP connection: 10.12.12.12.646 - 10.13.13.13.12592
State: Oper; Msgs sent/rcvd: 49/45; Downstream; Last TIB rev sent 1257
Up time: 00:32:41; UID: 1015; Peer Id 0;
LDP discovery sources:
Serial1/0; Src IP addr: 25.0.0.2
holdtime: 15000 ms, hello interval: 5000 ms
Addresses bound to peer LDP Ident:
10.0.0.129 10.12.12.12 10.0.0.2
Peer holdtime: 180000 ms; KA interval: 60000 ms; Peer state: estab
LDP inbound filtering accept acl: 1
Step 2 Enter the show ip access-list command to display the contents of all current IP access lists or of a specified access list.
Example:
show ip access-list
[
Verifying that MPLS LDP Inbound Label Bindings are Filtered
How to Configure MPLS LDP Inbound Label Binding Filtering
MPLS LDP Configuration Guide, Cisco IOS Release 12.4
44