search

sonic-net / sonic-buildimage

Scripts which perform an installable binary image build for SONiC
Other
728 stars 1.4k forks source link

[Allow_list] When 3 allow lists exist in one file and loaded, the previous 2 allow list items are missing in configuration #19048

Open guangyao6 opened 4 months ago

guangyao6 commented 4 months ago

Description

Test environment: vtestbed. Topo: vms-kvm-t1-lag When I tried to load allow list to sonic, I found that if I write several allow list into one file and load them once, only the last item would be loaded and the previous ones are lost. If I split the allow list into different files and load them one by one, then the result is expected. Below are the detailed logs, please find __find_next_seq_number '10' in this log. You can check for every allow list item, it always find the seq 10, so the previous allow list configuration are overwritten.

May 23 10:46:57.843693 vlab-02 DEBUG bgp#bgpcfgd: Received message : '('DEPLOYMENT_ID|0|8165:8831', 'SET', (('default_action', 'deny'), ('prefixes_v4', '10.10.10.10/24'), ('prefixes_v6', '2000:172:16:30::/64')))'
May 23 10:46:57.844805 vlab-02 INFO bgp#bgpcfgd: BGPAllowListMgr::Updating 'Allow list' policy. deployment_id '0'. community: '8165:8831' prefix_v4 '['10.10.10.10/24']'. prefix_v6: '['2000:172:16:30::/64']' neighbor_type 
May 23 10:46:57.845128 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__generate_names. deployment_id: 0, community: 8165:8831. names: {'pl_v4': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V4', 'pl_v6': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V6', 'rm_v4': 'ALLOW_LIST_DEPLOYMENT_ID_0_V4', 'rm_v6': 'ALLOW_LIST_DEPLOYMENT_ID_0_V6', 'community': 'COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831', 'neigh_type': ''}
May 23 10:46:57.845546 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:57.896883 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v4' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V4
May 23 10:46:57.897394 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v6' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V6
May 23 10:46:57.898202 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_community. community_name='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831' community='8165:8831'
May 23 10:46:57.898226 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__is_community_presented. community='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831'
May 23 10:46:57.898827 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831'
May 23 10:46:57.898879 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v4', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:57.898984 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65533
May 23 10:46:57.899072 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65534
May 23 10:46:57.899667 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:57.899714 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831'
May 23 10:46:57.899784 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831'
May 23 10:46:57.899816 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v6', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:57.899851 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65533
May 23 10:46:57.899955 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65534
May 23 10:46:57.900595 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:57.900631 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831'
May 23 10:46:57.900691 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' set_community='no-export'
May 23 10:46:57.900721 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:57.901683 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' set_community='no-export'
May 23 10:46:57.901708 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:57.902209 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:57.947376 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_policy. The peers configuration scheduled for updates
May 23 10:46:57.947404 vlab-02 INFO bgp#bgpcfgd: BGPAllowListMgr::Done
May 23 10:46:57.947974 vlab-02 DEBUG bgp#bgpcfgd: Received message : '('DEPLOYMENT_ID|0|8165:8832', 'SET', (('default_action', 'deny'), ('prefixes_v4', '20.20.20.20/24'), ('prefixes_v6', '2000:172:26:30::/64')))'
May 23 10:46:57.948625 vlab-02 INFO bgp#bgpcfgd: BGPAllowListMgr::Updating 'Allow list' policy. deployment_id '0'. community: '8165:8832' prefix_v4 '['20.20.20.20/24']'. prefix_v6: '['2000:172:26:30::/64']' neighbor_type 
May 23 10:46:57.948670 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__generate_names. deployment_id: 0, community: 8165:8832. names: {'pl_v4': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V4', 'pl_v6': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V6', 'rm_v4': 'ALLOW_LIST_DEPLOYMENT_ID_0_V4', 'rm_v6': 'ALLOW_LIST_DEPLOYMENT_ID_0_V6', 'community': 'COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832', 'neigh_type': ''}
May 23 10:46:57.952027 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:57.996410 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v4' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V4
May 23 10:46:57.996774 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v6' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V6
May 23 10:46:57.997436 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_community. community_name='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832' community='8165:8832'
May 23 10:46:57.997462 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__is_community_presented. community='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832'
May 23 10:46:57.997934 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832'
May 23 10:46:57.997981 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v4', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:57.998054 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65533
May 23 10:46:57.998119 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65534
May 23 10:46:57.998714 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:57.998772 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832'
May 23 10:46:57.998816 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832'
May 23 10:46:57.998833 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v6', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:57.998866 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65533
May 23 10:46:57.998973 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65534
May 23 10:46:57.999620 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:57.999645 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832'
May 23 10:46:57.999678 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' set_community='no-export'
May 23 10:46:57.999731 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:58.000274 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' set_community='no-export'
May 23 10:46:58.000298 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:58.000774 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:58.044231 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_policy. The peers configuration scheduled for updates
May 23 10:46:58.044261 vlab-02 INFO bgp#bgpcfgd: BGPAllowListMgr::Done
May 23 10:46:58.044958 vlab-02 DEBUG bgp#bgpcfgd: Received message : '('DEPLOYMENT_ID|0|8165:8833', 'SET', (('default_action', 'deny'), ('prefixes_v4', '30.30.30.30/24'), ('prefixes_v6', '2000:172:36:30::/64')))'
May 23 10:46:58.045741 vlab-02 INFO bgp#bgpcfgd: BGPAllowListMgr::Updating 'Allow list' policy. deployment_id '0'. community: '8165:8833' prefix_v4 '['30.30.30.30/24']'. prefix_v6: '['2000:172:36:30::/64']' neighbor_type 
May 23 10:46:58.045784 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__generate_names. deployment_id: 0, community: 8165:8833. names: {'pl_v4': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4', 'pl_v6': 'PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6', 'rm_v4': 'ALLOW_LIST_DEPLOYMENT_ID_0_V4', 'rm_v6': 'ALLOW_LIST_DEPLOYMENT_ID_0_V6', 'community': 'COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833', 'neigh_type': ''}
May 23 10:46:58.046248 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:58.090949 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v4' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4
May 23 10:46:58.091390 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_prefix_list. af='v6' prefix-list name=PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6
May 23 10:46:58.091845 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_community. community_name='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833' community='8165:8833'
May 23 10:46:58.092109 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__is_community_presented. community='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833'
May 23 10:46:58.092404 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833'
May 23 10:46:58.092637 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v4', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:58.092821 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65533
May 23 10:46:58.092990 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V4' entry. seq_no=65534
May 23 10:46:58.093192 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:58.093347 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v4' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833'
May 23 10:46:58.093507 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' Allow rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833'
May 23 10:46:58.093664 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_allow_route_map_entries. af='v6', rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:58.093826 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65533
May 23 10:46:58.094006 vlab-02 WARNING bgp#bgpcfgd: BGPAllowListMgr::Found incomplete route-map 'ALLOW_LIST_DEPLOYMENT_ID_0_V6' entry. seq_no=65534
May 23 10:46:58.094158 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__find_next_seq_number '10' has_community='yes'
May 23 10:46:58.094307 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_allow_route_map_entry. af='v6' seqno='10' Allow pl='PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6' cl='COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833'
May 23 10:46:58.094464 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4' set_community='no-export'
May 23 10:46:58.094619 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V4'
May 23 10:46:58.094816 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_default_route_map_entry. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6' set_community='no-export'
May 23 10:46:58.095221 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__parse_default_action_route_map_entries. rm='ALLOW_LIST_DEPLOYMENT_ID_0_V6'
May 23 10:46:58.095395 vlab-02 DEBUG bgp#bgpcfgd: execute command '['vtysh', '-c', 'show running-config']'.
May 23 10:46:58.137770 vlab-02 DEBUG bgp#bgpcfgd: BGPAllowListMgr::__update_policy. The peers configuration scheduled for updates

Steps to reproduce the issue:

  1. Create a file using below allow list. { "BGP_ALLOWED_PREFIXES":{ "DEPLOYMENT_ID|0|8165:8831":{ "prefixes_v4":"10.10.10.10/24", "prefixes_v6":"2000:172:16:30::/64", "default_action":"deny" }, "DEPLOYMENT_ID|0|8165:8832":{ "prefixes_v4":"20.20.20.20/24", "prefixes_v6":"2000:172:26:30::/64", "default_action":"deny" }, "DEPLOYMENT_ID|0|8165:8833":{ "prefixes_v4":"30.30.30.30/24", "prefixes_v6":"2000:172:36:30::/64", "default_action":"deny" } } }
  2. Using sonic-cfggen -j <file_name> -w to load this file.
  3. Using show runningconfiguration bgp to check the generated allow list configuration.

Describe the results you received:

IP prefix list and bgp community are all as expected. But for the route-map configuration, only the last item exists, others are missing.

!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V4 permit 10
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833
 match ip address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4
exit
!
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V6 permit 10
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833
 match ipv6 address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6
exit
!

Describe the results you expected:

If I split the allow list file per allow list item, such as below, and load them one by one, then the result is expected. File 1: 

{
    "BGP_ALLOWED_PREFIXES": {
        "DEPLOYMENT_ID|0|8075:8831": {
            "prefixes_v4": "10.10.10.10/24",
            "prefixes_v6": "2000:172:16:30::/64",
            "default_action": "deny"
        }
    }
}

File 2:

{
    "BGP_ALLOWED_PREFIXES": {
        "DEPLOYMENT_ID|0|8075:8832": {
            "prefixes_v4": "20.20.20.20/24",
            "prefixes_v6": "2000:172:26:30::/64",
            "default_action": "deny"
        }
    }
}

File 3:

{
    "BGP_ALLOWED_PREFIXES": {
        "DEPLOYMENT_ID|0|8075:8833": {
            "prefixes_v4": "30.30.30.30/24",
            "prefixes_v6": "2000:172:36:30::/64",
            "default_action": "deny"
        }
    }
}

The expected result:

!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V4 permit 10
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831
 match ip address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V4
exit
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V4 permit 20
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832
 match ip address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V4
exit
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V4 permit 30
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833
 match ip address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V4
exit
!
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V6 permit 10
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831
 match ipv6 address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8831_V6
exit
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V6 permit 20
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832
 match ipv6 address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8832_V6
exit
!
route-map ALLOW_LIST_DEPLOYMENT_ID_0_V6 permit 30
 match community COMMUNITY_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833
 match ipv6 address prefix-list PL_ALLOW_LIST_DEPLOYMENT_ID_0_COMMUNITY_8165:8833_V6
exit
!

Output of show version:

(paste your output here)

Output of show techsupport:

(paste your output here or download and attach the file here )

Additional information you deem important (e.g. issue happens only occasionally):

xumia commented 4 months ago

@StormLiangMS , could you please help assign owner for the issue? Thanks.

arlakshm commented 4 months ago

@StormLiangMS, please help triage this issue.