csr1000v - xrv - bgp - issue

Wiadomość

pysiok83 · #16

w zasadzie to:
sh ip bgp vpnv4 all summary

Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
1.1.1.1         4         6500       7       5        3    0    0 00:01:56        1
8.8.8.3         4         6510       4       6        3    0    0 00:01:46        0

Niestety nie widać preficów na XRv z R1.

Z R1 z vrf004 powinny się pokazać w XRv w vrf 001.

horac · #17

Widze ze masz RT import na IOS-XRv ale nie widze na R1 export route-target 127.0.0.0:1

Uh.. ale sesja juz stoi

pysiok83 · #18

na R1 mam:

Kod: Zaznacz cały

ip vrf 004
 rd 127.0.0.0:4
 route-target export 127.0.0.0:1

R2:

Kod: Zaznacz cały

vrf 001
 address-family ipv4 unicast
  import route-target
   127.0.0.0:1

horac · #19

RD skonfiguruj na IOS-XR. W IOS-XR masz ta konfiguracje pod

router bgp
vrf x
rd x:x

Generalnie zanim XR wrzuci prefiksy do tablicy routingu VRF 001 powinien.

a) Otrzymac vpnv4 update z prefiksami
b) Sprawdzic import RT policy pod okreslony VRF
c) Zainstalowac prefiksy w tablicy BGP vpnv4
d) Reczna redystrybucja do VRF z MP-BGP jezeli masz jako protokol PE-CE
cos innego niz BGP

RD jest konieczne do skonfigurowania na IOS-XRv pod procesem BGP

pysiok83 · #20

brakowało pod vrfem ipv4 unicast

, Dzięki Horac...

Wspominałeś coś wyżej, żeby nie podawać ipv4 pod konfiguracją samego BGPa. Możesz rozwinąć? Z tego co rozumiem to ipv4 podajemy w przypadku przesyłania prefixów.

horac · #21

pysiok83 pisze:brakowało pod vrfem ipv4 unicast , Dzięki Horac...

Wspominałeś coś wyżej, żeby nie podawać ipv4 pod konfiguracją samego BGPa. Możesz rozwinąć? Z tego co rozumiem to ipv4 podajemy w przypadku przesyłania prefixów.

Chodzi o to ze jezeli twoj router PE ma jedynie zapinac sesje MP-BGP vpnv4 to wylaczasz globalnie ipv4 unicast pod procesem BGP. Bo jezeli masz neighbor x.x.x.x to IOS-XE domyslnie zestawi Ci sesje BGP vpnv4 i BGP ipv4. To jest przydatne gdy masz PE jako shared dla zwyklego BGP i MP-BGP w Core operatora. Wylaczajac globalnie sesje ipv4 unicast mozesz wciaz ich uzywac ale musisz uzywac "activate" per address-familiy ipv4 per neighbor

pysiok83 · #22

dodałem do R1 jeszcze jednego sasiada ale niestety nie działa:

Kod: Zaznacz cały

 - chodzi o 8.8.8.4
 address-family ipv4 vrf 004
  redistribute connected
  neighbor 1.1.1.1 remote-as 6500
  neighbor 1.1.1.1 activate

  neighbor 8.8.8.4 remote-as 64677
  neighbor 8.8.8.4 update-source Loopback0
  neighbor 8.8.8.4 activate
 exit-address-family

z drugiej strony XRv

Kod: Zaznacz cały


interface Loopback0
 ipv4 address 8.8.8.4 255.255.255.255
!

router bgp 64677
 bgp router-id 2.2.2.1
 address-family ipv4 unicast
 !
 address-family vpnv4 unicast
 !
 neighbor-group EBGP_AGN_PEERS
  remote-as 6510
  address-family ipv4 unicast
  !
 !
 vrf 004
  rd 127.4.0.4:0
  address-family ipv4 unicast
  !
  neighbor 8.8.8.2
   use neighbor-group EBGP_AGN_PEERS
   update-source Loopback0
  !
 !
!
end


RP/0/0/CPU0:Rx2#RP/0/0/CPU0:Mar  8 00:34:59.985 : ipv4_rib[1136]: %ROUTING-RIB-3-UPDATE_TIMEOUT : Client "bgp" updated the RIB without signaling update completion for Vrf: "default" Tbl: "default" Safi: "Unicast"

pysiok83 · #23

Kod: Zaznacz cały

R2#sh ip route ospf 1
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override

Gateway of last resort is not set

      8.0.0.0/32 is subnetted, 2 subnets
O        8.8.8.3 [110/2] via 1.1.1.6, 02:50:02, GigabitEthernet2
      9.0.0.0/32 is subnetted, 1 subnets
O        9.9.9.4 [110/2] via 10.116.255.2, 00:06:23, GigabitEthernet4.252

A Jednocześnie otrzymuje komunikat:

*Mar 8 00:58:34.229: BGP: 9.9.9.4 Active open failed - no route to peer, open active delayed 13312ms (35000ms max, 60% jitter)

drake · #24

Hej,

poczytaj troche teorie jak caly setup powienien wygladac, czyli IGP+LDP, do tego MP-BGP dla VPNv4 sesje zestawiane miedzy loopbackami. Sprawdz jak wygladaja tablice etykiet

Pozdruffka!

pysiok83 · #25

drake

Problem w tym, że między CRSami sesja BGP wstaje bez problemu, natomiast między CRS a XRv jest problem.

R1 w tablicy vrf 004 gdzie zapinam sesje widzi IP:

Kod: Zaznacz cały

Routing Table: 004
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override

Gateway of last resort is not set

      1.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        1.1.1.0/30 is directly connected, GigabitEthernet3
L        1.1.1.2/32 is directly connected, GigabitEthernet3
      2.0.0.0/24 is subnetted, 1 subnets
B        2.2.2.0 [20/0] via 1.1.1.1, 10:00:59
      9.0.0.0/32 is subnetted, 2 subnets
C        9.9.9.2 is directly connected, Loopback2
O        9.9.9.4 [110/2] via 10.116.255.2, 00:12:55, GigabitEthernet4.252
      10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        10.116.255.0/29 is directly connected, GigabitEthernet4.252
L        10.116.255.5/32 is directly connected, GigabitEthernet4.252

Jednak ciągle otrzymuje komunikat o tym, że no route to host.

#26

1. Wklej cały config z urządzeń + sh ip route + sh mpls for. Przyspieszy to rozwiązywanie problemu.
2. W ostatnich postach piszesz o sesji na adresie 9.9.9.4. Raz podajesz tablicę w global, a raz w VRF. Jaką sesję chcesz nawiązać? W VRF możesz ipv4/ipv6 unicast, ale nie vpnv4/vpnv6.
3. Sprawdź, czy masz zgodność maski w GRT i w mpls binding table. Jeżeli na loopbacku nie masz /32, to taka niezgodność wystąpi i LSP będzie przerwane.

pysiok83 · #27

jeśli chodzi o sam MPLS to jet ok, zatrzymałem się na nawiązaniu 2 sesji bgp na R2. W tej chwili między R2 a Rx1 sesja bgp się nawiązała i prefixy są przerzucane tak jak zakładałem. Dołożyłem 2 router Rx2 i chciałem nawiązać sesje BGP z routerem R2.

R2:

Kod: Zaznacz cały

interface Loopback0
 ip address 8.8.8.2 255.255.255.255
 ip ospf 1 area 0
!
interface Loopback1
 ip vrf forwarding 004
 ip address 1.2.1.1 255.255.255.255
 ip ospf 2 area 0
!
interface GigabitEthernet1
 no ip address
 negotiation auto
!
interface GigabitEthernet2
 ip address 1.1.1.5 255.255.255.252
 ip ospf 1 area 0
 negotiation auto
 mpls ip
!
interface GigabitEthernet3
 description R1
 ip vrf forwarding 004
 ip address 1.1.1.2 255.255.255.252
 negotiation auto
!
interface GigabitEthernet4
 no ip address
 negotiation auto
!
interface GigabitEthernet4.252
 encapsulation dot1Q 252
 ip vrf forwarding 004
 ip address 10.116.255.5 255.255.255.248
 ip ospf 2 area 0
!
interface GigabitEthernet5
 no ip address
 shutdown
 negotiation auto
!
interface GigabitEthernet6
 no ip address
 shutdown
 negotiation auto
!
interface GigabitEthernet7
 no ip address
 shutdown
 negotiation auto
!
interface GigabitEthernet8
 no ip address
 shutdown
 negotiation auto
!
router ospf 2 vrf 004
 network 1.2.1.1 0.0.0.0 area 0
 network 2.2.0.1 0.0.0.0 area 0
!
router ospf 1
 network 8.8.8.2 0.0.0.0 area 0
 network 8.8.8.4 0.0.0.0 area 0
!
router bgp 6510
 bgp router-id 1.1.1.2
 bgp log-neighbor-changes
 neighbor 8.8.8.3 remote-as 6510
 neighbor 8.8.8.3 update-source Loopback0
 !
 address-family vpnv4
  neighbor 8.8.8.3 activate
  neighbor 8.8.8.3 send-community extended
 exit-address-family
 !
 address-family ipv4 vrf 004
  redistribute connected
  redistribute ospf 2
  neighbor 1.1.1.1 remote-as 6500
  neighbor 1.1.1.1 activate
  neighbor 2.2.0.1 remote-as 64677 - to jest sesja która nie wstaje
  neighbor 2.2.0.1 update-source Loopback1
  neighbor 2.2.0.1 activate
 exit-address-family

Rx2:

Kod: Zaznacz cały


interface Loopback0
 vrf 004
 ipv4 address 2.2.0.1 255.255.255.255

interface GigabitEthernet0/0/0/1.252
 vrf 004
 ipv4 address 10.116.255.2 255.255.255.248
 encapsulation dot1q 252

router ospf LAB
 vrf 004
  area 0.0.0.0
   interface Loopback0
   !
   interface GigabitEthernet0/0/0/1.252
   !
  !
 !
!

router bgp 64677
 bgp router-id 2.2.0.0
 address-family ipv4 unicast
 !
 address-family vpnv4 unicast
 !
 neighbor-group EBGP_AGN_PEERS
  remote-as 6510
  address-family ipv4 unicast
  !
 !

 vrf 004
  rd 127.4.0.4:0
  address-family ipv4 unicast
  !
  neighbor 1.2.1.1
   use neighbor-group EBGP_AGN_PEERS
   update-source Loopback0
  !
 !
!

R2

Kod: Zaznacz cały

R2#sh ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override

Gateway of last resort is not set

      1.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        1.1.1.4/30 is directly connected, GigabitEthernet2
L        1.1.1.5/32 is directly connected, GigabitEthernet2
      8.0.0.0/32 is subnetted, 2 subnets
C        8.8.8.2 is directly connected, Loopback0
O        8.8.8.3 [110/2] via 1.1.1.6, 10:51:31, GigabitEthernet2


R2#sh ip route vrf 004

Routing Table: 004
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
       a - application route
       + - replicated route, % - next hop override

Gateway of last resort is not set

      1.0.0.0/8 is variably subnetted, 3 subnets, 2 masks
C        1.1.1.0/30 is directly connected, GigabitEthernet3
L        1.1.1.2/32 is directly connected, GigabitEthernet3
C        1.2.1.1/32 is directly connected, Loopback1
      2.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
O        2.2.0.1/32 [110/2] via 10.116.255.2, 00:21:42, GigabitEthernet4.252
B        2.2.2.0/24 [20/0] via 1.1.1.1, 11:04:25
      10.0.0.0/8 is variably subnetted, 2 subnets, 2 masks
C        10.116.255.0/29 is directly connected, GigabitEthernet4.252
L        10.116.255.5/32 is directly connected, GigabitEthernet4.252

Rx2

Kod: Zaznacz cały

RP/0/0/CPU0:Rx2#sh route
Sun Mar  8 12:09:51.179 UTC

Codes: C - connected, S - static, R - RIP, B - BGP, (>) - Diversion path
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
       i - ISIS, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, su - IS-IS summary null, * - candidate default
       U - per-user static route, o - ODR, L - local, G  - DAGR, l - LISP
       A - access/subscriber, a - Application route
       M - mobile route, (!) - FRR Backup path

Gateway of last resort is not set

L    2.2.1.1/32 is directly connected, 00:42:49, Loopback1


RP/0/0/CPU0:Rx2#sh route vrf 004
Sun Mar  8 12:10:19.907 UTC

Codes: C - connected, S - static, R - RIP, B - BGP, (>) - Diversion path
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
       i - ISIS, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, su - IS-IS summary null, * - candidate default
       U - per-user static route, o - ODR, L - local, G  - DAGR, l - LISP
       A - access/subscriber, a - Application route
       M - mobile route, (!) - FRR Backup path

Gateway of last resort is not set

O    1.2.1.1/32 [110/2] via 10.116.255.5, 00:28:41, GigabitEthernet0/0/0/1.252
L    2.2.0.1/32 is directly connected, 00:23:12, Loopback0
C    10.116.255.0/29 is directly connected, 01:22:12, GigabitEthernet0/0/0/1.252
L    10.116.255.2/32 is directly connected, 01:22:12, GigabitEthernet0/0/0/1.252

Tak jak pisałem nie wstaje sesja między 1.2.1.1 R2 a 2.2.0.1 Rx2

pysiok83 · #28

problem rozwiązany:

ebgp-multihop ....
Wcześniej nie podawałem dla bgp z loopbackiem i działało.

Sesja jest up jednak nie widzę przefixów jakie powinienm otrzymać z Rx2 do R2.

Rx2:

Kod: Zaznacz cały

router bgp 64677
 bgp router-id 2.2.0.0
 address-family ipv4 unicast
 !
 address-family vpnv4 unicast
 !
 neighbor-group EBGP_AGN_PEERS
  remote-as 6510
  address-family ipv4 unicast
  !
 !
 vrf 004
  rd 127.4.0.4:0
  address-family ipv4 unicast
   network 10.69.198.0/24
  !
  neighbor 1.2.1.1
   use neighbor-group EBGP_AGN_PEERS
   ebgp-multihop 3
   update-source Loopback0
  !
 !
!

R2:

Kod: Zaznacz cały

R2#sh bgp vrf 004
BGP table version is 19, local router ID is 1.1.1.2
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
              x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

     Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 127.0.0.0:4 (default for vrf 004)
 *>  1.1.1.0/30       0.0.0.0                  0         32768 ?
 *>  1.2.1.1/32       0.0.0.0                  0         32768 ?
 *>  9.9.9.0/24       1.1.1.1                  0             0 6500 i
 *>  10.116.255.0/29  0.0.0.0                  0         32768 ?

CCIE.pl

csr1000v - xrv - bgp - issue

gangrena