NX-OS show ip bgp rib-failure equivalent
I utilize the: show ip bgp rib-failure command in IOS to check for BGP learned routes which did not get installed in the routing table.
However, in my Cisco 7009 with Enterprise licensing, I cannot find the equivalent command to check for RIB failures and the reason for the RIB failure.
I've ran into the same issue on IOS-XR code and hasn't been able to find any equivalent in XR docs.
Just wondering if you have found some more information on your NX code?
BR,
Tomas
Similar Messages
-
I am learning advance bgp ....having query :
BGP uses different types of routing table..i.e 1) adj-rib-in (unprocessed routes which are received from neighbors)
2) adj-rib-out (routes which are sent by router to its neighbors)
3) local bgp table: (remained routes after process on adj-rib-in & rib-out) Best routes from local bgp table is forwarded to ip bgp talbe...
Q1. is it right??
Q2. how can i see these three table separately... is there any command to see only adj-rib-in or rib-out etc ??
Q3. Is there any concern of command
show ip bgp neighbors [address] advertised-routes
show ip bgp neighbors [address] received-routes
show ip bgp rib-failure
S@ndy...Hi S@ndy,
Ad Q1: Almost correct. I believe that looking into RFC 4271 is worth a try, and the RFC puts it very nicely:
Adj-RIB-In
The Adj-RIBs-In contains unprocessed routing information that has
been advertised to the local BGP speaker by its peers.
Adj-RIB-Out
The Adj-RIBs-Out contains the routes for advertisement to specific
peers by means of the local speaker's UPDATE messages.
Loc-RIB
The Loc-RIB contains the routes that have been selected by the
local BGP speaker's Decision Process.
In particular, the Loc-RIB are not "the remaining" routes but simply routes that have been selected from Adj-RIB-In and locally injected routes as the best paths. These routes would be attempted to be installed into the router's routing table and would also be candidates for advertisement to other BGP peers.
Ad Q2: To see what routes have been received from a particular neighbor (Adj-RIB-In), use show ip bgp neighbor X.X.X.X routes. To see what routes have been sent to a particular neighbor (Adj-RIB-Out), use show ip bgp neighbor X.X.X.X advertised-routes. I am not sure if there is a command to display the Loc-RIB; I do not know of any.
Ad Q3: The advertised-routes shows the Adj-RIB-Out for the neighbor. The received-routes is relevant to a deprecated feature called Soft Reconfiguration that is beyond the topic of this discussion. The rib-failure shows you a set of routes from Loc-RIB that could not be installed into the router's routing table, if there are any. Most often, this is caused by the same network being already present in the routing table with a better administrative distance.
Best regards,
Peter -
Show ip bgp not showing all BGP Paths
Hi,
We've setup BGP as shown in the diagram.
Now Router Router A and B are peers of each other. Router A peers with ISP A and Router B peers with Router B.
The issue we have is that Router B knows how to get to router C via eBGP connection to ISP B router or via ISP A, which is advertised via iBGP from Router A.
But ....
Router A only shows in "show ip bgp" about network Router C via ISP A.
If I do a soft clear of bgp information on Router A I then see both paths to Router C via ISP A or ISPB, but once BGP is converged im only seeing best path via ISP A. Can anyone explain why the path via ISP B is not shown on Router A? we are using local preference in a route map to say prefer router A over Router B to exit the network to get to router C.
Synchronisation is disabled. Router A and B are running the same code of IOS and also have similiar configs.
My assumption is that becuase of the local preference Router A stops listing path via Router B in the BGP table. This thought doesnt make complete sense to me ???? In my test lab I always see all paths to exit the AS.
router#show ip bgp 192.168.100.0
BGP routing table entry for 192.168.100.0/22, version 40
Paths: (2 available, best #2, table default)
Not advertised to any peer
65530 64514, (aggregated by 64514 10.x.x.246)
10.x.x.30 from 10.x.x.30 (202.x.x.x)
Origin IGP, localpref 80, valid, external, atomic-aggregate
65530 64514, (aggregated by 64514 10.202.103.246)
10.x.x.22 from 10.x.x.78 (10.x.x.78)
Origin IGP, metric 0, localpref 120, valid, internal, atomic-aggregate, best
Thanks
BI've just lab'd this and it is the local preference.
If I remove my route map I see all paths as expected. Once I apply my route-map which matches ips and assigns the local preference then I see the shown behaviour.
Note to self - lab first before posting on cisco support forum -
How can I see "show ip bgp neighbors" for only VPNv4 enabled?
Hi,
I have only VPNv4-BGP-neighbors defined (IPv4-cfg is inactivated).
Is there any command showing the status of the VPNv4-neighbors ??
I am missing a command like "show ip bgp sum", "show ip bgp neigh" for VPNv4.
I use Cisco7206 with 12.2(14)S at the moment
What about neighbor status (established, number of prefixes, statistics updates/keepalives,....)
Regards,
ChrisHi,
I found the command I searched for:
sh ip bgp vpnv4 all sum
sh ip bgp vpnv4 all neighbor
Thanks,
Chris -
My computer keeps showing error smart disk failure
My computer keeps showing error smart disk failure on booting startup screen and also my backups system stopped completely
and my DVD/CD writer ROM has stop working indicating red light on my lens light area. and has stop indicating itselve at task manerg area
This question was solved.
View Solution.The error means the hdd is failing and will have to be replaced with a new one.
******Clicking the Thumbs-Up button is a way to say -Thanks!.******
**Click Accept as Solution on a Reply that solves your issue to help others** -
Under show serverfarms what does failures mean?
When u do show serverfarm u see connections failures. How do u dig into what serverfarm connection failures are?
When u do show serverfarm detail it does not tell u much
Eg:
serverfarm : 5.7.133.98-80, type: HOST
total rservers : 1
----------connections-----------
real weight state current total failures
---+---------------------+------+------------+----------+----------+---------
rserver: nj09mhe0004
172.28.8.33:2098 8 OPERATIONAL 0 14112 224
So we have 224 connection failures what do they mean?Failures are counted when the server does not respond to a SYN from ACE or responds with a RESET.
Gilles. -
"Show Description" for podcasts--key equivalent?
Is there any way, directly or via a decent fudge, to have a command-key equivalent for the "Show Description" selection you can get for a podcast via the contextual menu? I use this a lot, and right-clicking over and over is irritatingly slow. Yes, I know you can leave the window open, but I also use this on my MacBook, where screen real estate is somewhat precious.
I tried Show Description from Doug's Applescripts
http://dougscripts.com/itunes/scripts/ss.php?sp=showdescription
but not only does it bring up a different window (not the same one you get from the contextual menu) but what you get is mostly code and not easily read. I don't want to edit the code, just see the long description.After selcting the value from F4 press enter, it will go through the PAI and PBO. Write the code to select the description from that check table and pass into that description field. In the attributes of that description field, goto Program tab Check the check box Output field and Output only.
Check the sample program:
TABLES: addr1_data.
DATA: ws_country_desc TYPE t005t-landx,
okcode TYPE sy-ucomm.
CALL SCREEN 100.
*& Module status_0100 OUTPUT
text
MODULE status_0100 OUTPUT.
IF NOT addr1_data-country IS INITIAL.
SELECT SINGLE landx FROM t005t INTO ws_country_desc WHERE
land1 = addr1_data-country
AND spras = 'EN'.
ENDIF.
ENDMODULE. " status_0100 OUTPUT
*& Module user_command_0100 INPUT
text
MODULE user_command_0100 INPUT.
ENDMODULE. " user_command_0100 INPUT
Regards,
Prakash. -
RAID5 Utility Shows Prefailure but no failure light on drive.
I have an Xserver (Late 2009) that has the 3 internal bays setup with 2TB drives each in a RAID5 array. (Plus an external 16TB RAID Array as well.) The RAID Utility shows that Bay 2 his a drive in a prefailure state. However, the light on the drive itself is green, not orange or red, as I might expect. The server is still up and operational. I have a replacement 2TB drive in hand to swap it out. However, I'm concerned that my drive light is green instead of orange/yellow or red to guide me to the failing hardware so I can replace it and begin the automatic rebuild process.
Any insight on what I'm seeing here?
Thanks!
Here's what the server drive bays look like:
And this is what my RAID Utility shows:How hard was it to replace the backplane? I have a DL385 G2 with the same issue, except on two drives (slots 0 and 1).
>>> KeN Etter<[email protected]> 4/25/2013 8:23 AM >>>
On Wed, 24 Apr 2013 19:26:01 GMT, Sewermonger
<[email protected]> wrote:
>
>Might take awhile. The air traffic controllers are taking a very long
>time to get airplanes in the air and on the ground here in the US.
>Sequestration is being blamed. I blame something else that rhymes with
>ID 10 T's
The back plane actually arrived the next day. Swapped it out and
problem resolved.
And maybe the government should learn how to make do with less money
and let us keep more of ours. Such a novel concept. ...but I better
not go further than that in here...don't want Susan on my case for
pushing the rules. :-) -
Show mls qos interface statistics equivalent command on Cat6500 SUP720-3B?
Hi all
Is there a command on the SUP720-3B that is similar to the show mls qos interface gi0/x statistics command on the access-layer series switches (3560 etc.)?
I'd like to see the incoming and outgoing DSCP/COS values in number of packets.
Thx :)Hi,
You can use this command:
SUP720#show queueing interface xx
You should be able to see all that information there.
Hope this helps. -
IPS4240 in bypassmode-auto cause BGP peering failure
Recently installed IPS4240's running inline. With "bypass-mode auto" the BGP peering (with password) between 2 routers either side of the IPS unit drops. The error logs indicate bad MD5 hash on both units. In "bypass-mode on" BGP peering with password is fine.
Anyone know a fix or the cause?This is probably being dropped or modified by some of the "normalizer" engine signatures in the IPS. Basically the IPS in inline mode does a lot of TCP checks and drops or modifies packets with certain bits set. It probably doesn't like the fact the MD5 hash is set as TCP option bit 19 and is modifying it somehow, which then fails your authentication on the remote peer.
Go into whatever configuration tool you're using and enable the "produce-verbose-alert" on all the 13xx signatures (1300-1330). Then check your alerts for an alert with a victim/attacker IP addresses of your BGP routers, see what signature it was that actually fired, then disable that signature (or add a filter so that it doesn't fire for that IP address pair anymore). This will stop it doing whatever it is doing to your BGP packets and it should work from then on.
It'll probably be one of the sub-sigs under 1330, as this does a lot of different checks on various parts of the TCP packet. -
Just wondering if anyone else has had this issue and found a solution. the policy has been applied
and enforced through the default domain policy. New category success events are showing up, but
no failure audits.> and enforced through the default domain policy. New category success
> events are showing up, but no failure audits.
Maybe there is no failure event?
Martin
Mal ein
GUTES Buch über GPOs lesen?
NO THEY ARE NOT EVIL, if you know what you are doing:
Good or bad GPOs?
And if IT bothers me - coke bottle design refreshment :)) -
Load balance not happening in BGP
Dear Friends,
As per I know local BGP process may implement equal-cost load-balancing to the paths that:
Have the same set of path attributes up to the MED (weight, Local Preference, Origin, MED)
Are of the same type (both learned via iBGP or eBGP)
Have the same IGP cost to reach their NEXT_HOP IP address
If the above conditions are met andmaximum-paths [ibgp]is configured under the BGP process, BGP will install multiple equal-cost routes into the local RIB and use them for load-balancing. We call the above condition as load-balancing conditions for BGP.
As all the above criteria are matched still BGP is not doing load balance. Please find below routing table:
R1:
R1#sh ip bgp
BGP table version is 4, local router ID is 40.1.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next Hop Metric LocPrf Weight Path
*>i192.168.1.0 20.1.1.2 0 100 0 i
* i 30.1.1.1 0 100 0 i
R1#sh ip route
Gateway of last resort is not set
20.0.0.0/24 is subnetted, 1 subnets
R 20.1.1.0 [120/1] via 10.1.1.2, 00:00:03, FastEthernet0/0
40.0.0.0/24 is subnetted, 1 subnets
C 40.1.1.0 is directly connected, FastEthernet0/1
10.0.0.0/24 is subnetted, 1 subnets
C 10.1.1.0 is directly connected, FastEthernet0/0
B 192.168.1.0/24 [200/0] via 20.1.1.2, 00:12:01
30.0.0.0/24 is subnetted, 1 subnets
R 30.1.1.0 [120/1] via 40.1.1.2, 00:00:15, FastEthernet0/1
router bgp 100
no synchronization
bgp log-neighbor-changes
neighbor 10.1.1.2 remote-as 100
neighbor 40.1.1.2 remote-as 100
maximum-paths 2
no auto-summary
Please help....!!!!!!! why BGP is not load balancing here????
R1#traceroute 192.168.1.1
Type escape sequence to abort.
Tracing the route to 192.168.1.1
1 10.1.1.2 88 msec 60 msec 28 msec
2 20.1.1.2 104 msec 56 msec 120 msec
Regards,
SanjibDear Jon,
Thank you so much.
When I changed the configuration BGP is now loadbalancing. But in configuartion Max-path showing as 1 instead of 2.
R1#sh ip pro | sec bgp
Routing Protocol is "bgp 100"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
IGP synchronization is disabled
Automatic route summarization is disabled
Neighbor(s):
Address FiltIn FiltOut DistIn DistOut Weight RouteMap
12.1.1.2
13.1.1.3
Maximum path: 1
Routing Information Sources:
Gateway Distance Last Update
13.1.1.3 200 00:01:12
12.1.1.2 200 00:02:15
Distance: external 20 internal 200 local 200
Regards,
Sanjib -
hi,
i have the following cli show command output,
R2#show bgp ipv4 unicast
BGP table version is 11, local router ID is 192.168.220.252
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale
Origin codes: i - IGP, e - EGP, ? - incomplete
Network Next Hop Metric LocPrf Weight Path
* i192.168.30.0 192.168.110.70 0 100 0 63000 i
*> 192.168.220.70 0 0 63000 63000 i
* i192.168.40.0 192.168.110.70 0 100 0 63000 63000 i
*> 192.168.220.70 0 0 63000 i
R2#
why isn't the route through the shortest AS path not selected as the best route for 192.168.30.0. ?
thanks,
uddikaR2#
R2#
R2#show ip bgp 192.168.30.0
BGP routing table entry for 192.168.30.0/24, version 7
Paths: (2 available, best #2, table Default-IP-Routing-Table)
Advertised to update-groups:
2
63000
192.168.110.70 (inaccessible) from 192.168.111.251 (192.168.111.251)
Origin IGP, metric 0, localpref 100, valid, internal
63000 63000, (received & used)
192.168.220.70 from 192.168.220.70 (192.168.220.70)
Origin IGP, metric 0, localpref 100, valid, external, best
R2#
R2#
thanks, i noticed that R2 does not have the route for the next hop, 192.168.110.70. -
BGP Selection .. Why Path #2 is better ! ?
I have a question please. For below output why 2nd output is considered best
According to my topology this is the right behavior however I am just curious why it is considered the best
Many Thanks
||||||||||||||
R9#show ip bgp vpnv4 vrf ABC 172.9.0.5
BGP routing table entry for 1009:9:172.9.0.5/32, version 142
Paths: (2 available, best #2, table ABC, RIB-failure(17) - next-hop mismatch)
Not advertised to any peer
Local
172.9.195.15 from 0.0.0.0 (9.9.0.9)
Origin incomplete, metric 2560077056, localpref 100, weight 32768, valid, sourced
Extended Community: SoO:109:109 RT:1009:9
Cost:pre-bestpath:129:2560077056 (default+412593409) 0x8800:0:9
0x8801:100:77056 0x8802:259:2560000000 0x8803:257:1
0x8804:1009:2886270986 0x8805:9:0
mpls labels in/out 31/nolabel
9, imported path from 9:9:172.9.0.5/32
9.9.0.8 (metric 30) from 9.9.0.8 (9.9.0.8)
Origin IGP, metric 4125934090, localpref 100, valid, internal, best
Extended Community: RT:9:9 OSPF DOMAIN ID:0x0005:0x0000006D0200
OSPF RT:0.0.0.0:2:0 OSPF ROUTER ID:172.9.0.5:36783
mpls labels in/out 31/62
R9#The BGP cost community modifies the BGP path selection process.
the "pre-bestpath" point of insertion was introduced in the BGP Cost Community feature. This POI is applied automatically to EIGRP routes that are redistributed into BGP and carries the EIGRP route type and metric. This POI influences the best path calculation process by influencing BGP to consider this POI before any other comparison step effectivefly forcing BGP to use IGP-like selection rules.
https://supportforums.cisco.com/document/58226/dual-ce-pe-connection-and-eigrp
http://www.cisco.com/c/en/us/td/docs/ios/12_0s/feature/guide/s_bgpcc.html
http://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13753-25.html#custom
Best Regards,
Bheem -
BGP route-reflector next-hop issue
Hello,
I have a small GNS3 lab that is working with one exception: I cannot ping loopback0 on RRc2 and RRc3 from RRc1.
RRc1, RRc2 and RRc3 can all ping loopback0 on SmileyISP and RRc2 and RRc3 can ping each others loopback0
interfaces.
I am broken between the two route-reflectors: RRS1 and RRS2.
Given these conditions:
1) Do not configure any IGP.
2) No static routes
How do I get connectivity from RRc1's loopback0 interface to RRc2 loopback0 and RRc3 loopback0?
I used a route-map to set the next hop, but I am obviously doing something wrong.
I am providing relevant show command outputs, router configs, and the GNS3 topology.net config.
You will have to change the image and working directories to match your computer.
Not quite sure where I am going wrong.
Any help would be greatly appreciated.
Thanks.
-- Mark
RRc1#sh ip bgp
BGP table version is 53, local router ID is 172.16.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*>i 1.1.1.0/24 10.1.25.5 0 100 0 100 i
*>i 10.1.12.0/24 10.1.26.2 0 100 0 i
*>i 10.1.13.0/24 10.1.12.1 0 100 0 i
*>i 10.1.14.0/24 10.1.12.1 0 100 0 i
*>i 10.1.15.0/24 10.1.12.1 0 100 0 i
*>i 10.1.25.0/24 10.1.26.2 0 100 0 i
* i 10.1.26.0/24 10.1.26.2 0 100 0 i
*> 0.0.0.0 0 32768 i
*> 172.16.1.0/24 0.0.0.0 0 32768 i
*>i 172.16.2.0/24 10.1.12.1 0 100 0 i
*>i 172.16.3.0/24 10.1.12.1 0 100 0 i
RRc1#
RRc1#ping 172.16.2.1 so lo0
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.16.2.1, timeout is 2 seconds:
Packet sent with a source address of 172.16.1.1
Success rate is 0 percent (0/5)
RRc1#
RRc2#sh ip bgp
BGP table version is 31, local router ID is 172.16.2.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*>i 1.1.1.0/24 10.1.15.5 0 100 0 100 i
* i 10.1.12.0/24 10.1.12.2 0 100 0 i
* i 10.1.13.0/24 10.1.13.1 0 100 0 i
*> 0.0.0.0 0 32768 i
*>i 10.1.14.0/24 10.1.13.1 0 100 0 i
*>i 10.1.15.0/24 10.1.13.1 0 100 0 i
* i 10.1.25.0/24 10.1.12.2 0 100 0 i
* i 10.1.26.0/24 10.1.12.2 0 100 0 i
* i 172.16.1.0/24 10.1.12.2 0 100 0 i
*> 172.16.2.0/24 0.0.0.0 0 32768 i
*>i 172.16.3.0/24 10.1.14.4 0 100 0 i
RRc2#
SmileyISP#sh run
Building configuration...
Current configuration : 988 bytes
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname SmileyISP
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface Loopback0
ip address 1.1.1.1 255.255.255.0
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.15.5 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
ip address 10.1.25.5 255.255.255.0
speed auto
duplex auto
router bgp 100
bgp log-neighbor-changes
network 1.1.1.0 mask 255.255.255.0
network 10.1.15.0 mask 255.255.255.0
neighbor 10.1.15.1 remote-as 200
neighbor 10.1.25.2 remote-as 200
ip forward-protocol nd
no ip http server
no ip http secure-server
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
RRS1#sh run
Building configuration...
Current configuration : 1594 bytes
! Last configuration change at 19:24:34 UTC Sat Feb 7 2015
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname RRS1
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.15.1 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
ip address 10.1.12.1 255.255.255.0
speed auto
duplex auto
interface FastEthernet2/0
ip address 10.1.13.1 255.255.255.0
speed auto
duplex auto
interface FastEthernet2/1
ip address 10.1.14.1 255.255.255.0
speed auto
duplex auto
router bgp 200
bgp log-neighbor-changes
network 10.1.13.0 mask 255.255.255.0
network 10.1.14.0 mask 255.255.255.0
network 10.1.15.0 mask 255.255.255.0
neighbor RouteReflectors peer-group
neighbor RouteReflectors remote-as 200
neighbor RouteReflectors route-map NEXTHOP out
neighbor RRClients peer-group
neighbor RRClients remote-as 200
neighbor RRClients route-reflector-client
neighbor 10.1.12.2 peer-group RouteReflectors
neighbor 10.1.13.3 peer-group RRClients
neighbor 10.1.14.4 peer-group RRClients
neighbor 10.1.15.5 remote-as 100
ip forward-protocol nd
no ip http server
no ip http secure-server
route-map NEXTHOP permit 10
set ip next-hop peer-address
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
RRS2#sh ru
Building configuration...
Current configuration : 1542 bytes
! Last configuration change at 19:42:06 UTC Sat Feb 7 2015
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname RRS2
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.12.2 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
ip address 10.1.25.2 255.255.255.0
speed auto
duplex auto
interface FastEthernet2/0
ip address 10.1.26.2 255.255.255.0
speed auto
duplex auto
interface FastEthernet2/1
no ip address
shutdown
speed auto
duplex auto
router bgp 200
bgp log-neighbor-changes
network 10.1.12.0 mask 255.255.255.0
network 10.1.25.0 mask 255.255.255.0
network 10.1.26.0 mask 255.255.255.0
neighbor RouteReflectors peer-group
neighbor RouteReflectors remote-as 200
neighbor RouteReflectors route-map NEXTHOP out
neighbor RRClients peer-group
neighbor RRClients remote-as 200
neighbor RRClients route-reflector-client
neighbor 10.1.12.1 peer-group RouteReflectors
neighbor 10.1.25.5 remote-as 100
neighbor 10.1.26.6 peer-group RRClients
ip forward-protocol nd
no ip http server
no ip http secure-server
route-map NEXTHOP permit 10
set ip next-hop peer-address
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
RRc1#sh run
Building configuration...
Current configuration : 1005 bytes
! Last configuration change at 18:43:57 UTC Sat Feb 7 2015
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname RRc1
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface Loopback0
ip address 172.16.1.1 255.255.255.0
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.26.6 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
no ip address
shutdown
speed auto
duplex auto
router bgp 200
bgp log-neighbor-changes
network 10.1.26.0 mask 255.255.255.0
network 172.16.1.0 mask 255.255.255.0
neighbor 10.1.26.2 remote-as 200
ip forward-protocol nd
no ip http server
no ip http secure-server
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
RRc2#sh run
Building configuration...
Current configuration : 1005 bytes
! Last configuration change at 18:45:05 UTC Sat Feb 7 2015
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname RRc2
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface Loopback0
ip address 172.16.2.1 255.255.255.0
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.13.3 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
no ip address
shutdown
speed auto
duplex auto
router bgp 200
bgp log-neighbor-changes
network 10.1.13.0 mask 255.255.255.0
network 172.16.2.0 mask 255.255.255.0
neighbor 10.1.13.1 remote-as 200
ip forward-protocol nd
no ip http server
no ip http secure-server
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
RRc3#wr term
Building configuration...
Current configuration : 1005 bytes
! Last configuration change at 18:31:12 UTC Sat Feb 7 2015
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
hostname RRc3
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ipv6 cef
multilink bundle-name authenticated
interface Loopback0
ip address 172.16.3.1 255.255.255.0
interface FastEthernet0/0
no ip address
shutdown
duplex half
interface FastEthernet1/0
ip address 10.1.14.4 255.255.255.0
speed auto
duplex auto
interface FastEthernet1/1
no ip address
shutdown
speed auto
duplex auto
router bgp 200
bgp log-neighbor-changes
network 10.1.14.0 mask 255.255.255.0
network 172.16.3.0 mask 255.255.255.0
neighbor 10.1.14.1 remote-as 200
ip forward-protocol nd
no ip http server
no ip http secure-server
control-plane
line con 0
logging synchronous
transport preferred none
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
autostart = False
version = 0.8.6
[127.0.0.1:7202]
workingdir = C:\Users\Mark\AppData\Local\Temp
udp = 10200
image = C:\downloads\GNS3\c7200-adventerprisek9-mz.152-4.S5.image
idlepc = 0x62f1e4ec
ghostios = True
console = 2005
aux = 2100
cnfg = configs\SmileyISP.cfg
slot1 = PA-2FE-TX
f1/0 = RRS1 f1/0
f1/1 = RRS2 f1/1
x = -24.0
y = -259.0
z = 1.0
hx = -1.5
hy = -24.0
console = 2015
aux = 2101
cnfg = configs\RRc1.cfg
slot1 = PA-2FE-TX
f1/0 = RRS2 f2/0
x = -292.0
y = 200.0
z = 1.0
hx = -5.5
hy = -25.0
[127.0.0.1:7200]
workingdir = C:\Users\Mark\AppData\Local\Temp
udp = 10000
image = C:\downloads\GNS3\c7200-adventerprisek9-mz.152-4.S5.image
idlepc = 0x62f1e4ec
ghostios = True
console = 2012
aux = 2102
cnfg = configs\RRS1.cfg
slot1 = PA-2FE-TX
f1/0 = SmileyISP f1/0
f1/1 = RRS2 f1/0
slot2 = PA-2FE-TX
f2/0 = RRc2 f1/0
f2/1 = RRc3 f1/0
x = 197.0
y = 6.0
z = 1.0
hx = 42.5
hy = -20.0
console = 2013
aux = 2103
cnfg = configs\RRS2.cfg
slot1 = PA-2FE-TX
f1/0 = RRS1 f1/1
f1/1 = SmileyISP f1/1
slot2 = PA-2FE-TX
f2/0 = RRc1 f1/0
x = -239.0
y = 9.0
z = 1.0
hx = 1.5
hy = -24.0
[127.0.0.1:7201]
workingdir = C:\Users\Mark\AppData\Local\Temp
udp = 10100
image = C:\downloads\GNS3\c7200-adventerprisek9-mz.152-4.S5.image
idlepc = 0x62f1e4ec
ghostios = True
console = 2009
aux = 2104
cnfg = configs\RRc3.cfg
slot1 = PA-2FE-TX
f1/0 = RRS1 f2/1
x = 337.0
y = 155.0
z = 1.0
hx = 17.5
hy = -25.0
console = 2008
aux = 2105
cnfg = configs\RRc2.cfg
slot1 = PA-2FE-TX
f1/0 = RRS1 f2/0
x = 149.0
y = 204.0
z = 1.0
hx = -13.5
hy = -23.0
[GNS3-DATA]
configs = configs
text = ".1"
x = 208.0
y = -23.0
text = "10.1.12.0/24"
x = -19.0
y = 5.0
text = ".1"
x = 153.0
y = 25.0
text = ".1"
x = 259.0
y = 33.0
text = "10.1.13.0/24"
x = 238.0
y = 84.0
rotate = 99
text = "10.1.25.0/24"
x = -188.0
y = -124.0
text = "l0: 172.16.2.1/24"
x = 125.0
y = 244.0
text = "l0:172.16.1.1/24"
x = -269.0
y = 240.0
text = "10.1.15.0/24"
x = 116.0
y = -127.0
text = "10.1.14.0/24"
x = 293.0
y = 53.0
rotate = 50
text = ".1"
x = 194.0
y = 68.0
text = "AS100"
x = -20.0
y = -342.0
text = ".2"
x = -148.0
y = 46.0
text = "AS200"
x = 33.0
y = 300.0
text = "l0: 1.1.1.1/24"
x = -42.0
y = -306.0
text = ".5"
x = 50.0
y = -213.0
text = ".2"
x = -248.0
y = 60.0
text = ".2"
x = -174.0
y = -52.0
text = ".5"
x = -54.0
y = -209.0
text = ".6"
x = -232.0
y = 189.0
text = "l0:172.16.3.1/24"
x = 299.0
y = 194.0
text = "10.1.26.0/24"
x = -274.0
y = 167.0
rotate = 290
text = ".3"
x = 208.0
y = 187.0
text = ".4"
x = 312.0
y = 155.0
type = ellipse
x = 50.0
y = -35.0
width = 385.0
height = 345.0
fill_color = "#ffff7f"
border_style = 2
z = -1.0
type = ellipse
x = -171.0
y = -346.0
width = 359.0
height = 200.0
fill_color = "#aaff7f"
border_style = 2
z = -1.0
type = ellipse
x = -407.0
y = -87.0
width = 883.0
height = 443.0
border_style = 2
z = -2.0
type = ellipse
x = -361.0
y = -29.0
width = 385.0
height = 326.0
fill_color = "#55aaff"
border_style = 2
z = -3.0BD,
Ahh...
OK. In the original article, the author states that the final piece with the route map
NEXTHOP was supposed to fix the reachability issue. Obviously it doesn't.
After reading your last post, I looked more carefully at the output from 'sh ip bgp'
on each of the client routers and I realized that several of the next hop addresses were
wrong for some of the prefixes.
1) I completely removed the 'neighbor RouteReflectors route-map NEXTHOP out'
from both RR's. Then I ran 'sh ip bgp' on the clients and noted a change in the next hop addresses. Still wrong, but it changed.
2) I then tried next-hop-self from the RR's to the clients, but it did not change from where
it was after I completed step 1. I am not sure why there was no change. (actually, see the very end of this post)
3) I then applied my version of the route map: route-map NEXTHOP permit 10
set ip next-hop peer-address
to the RR's with this: neighbor RRClients route-map NEXTHOP out
That fixed it. All three clients have as their next hop for all prefixes their respective
RR's (which is what they should have for this topology).
I have full connectivity everywhere, even loopback to loopback between all clients.
1) THANK YOU for pointing me in the right direction.
2) If I may ask, why did next hop self fail? More specifically, I saw no change at all
in the next hop for the advertised prefixes. Is it because next-hop-self should be used
for eBGP peers and all of the RR's and clients are all within the same AS?
Maybe you are looking for
-
Inserting a Re: in foreign mail - or where can i post a plug in request?
hello, i often email people in Europe - and so my copy of mail puts re: in front of their email, while theirs puts aw: or sv: or something else which means re in front of mine. i'd like to find out if it's possible to add to the list of exceptions wh
-
DUPLEX PRINTING - HP Officejet 6500 E710a-f PRINTER
My HP Officejet 6500 E710a-f is fitted with a Gadget for Duplex Printing. That notwithstanding, the Print Settings do not provide an option for automatic Duplex Printing. The Settings only provide for a "Print One Sided" under which there is a Sub-
-
Unable to launch Adobe Reader using ShellExecute with Protected Mode on
HI Using the latest Adobe Reader 11.0.9, I open a PDF via ShellExecute in a legacy 32bit application, I get an unsupported configuration dialog and prompt to open with Protected Mode disabled always, once or don't open. I need it to open with Protect
-
IGoogle doesn't display properly
Hello all, Yesterday, all was fine. Today, my iGoogle page won't display properly (running Safari - OSX 10.3.9 Panther). Get a notice that: 'Home tab has been sent. Sending failed.' Brother Mac running Panther has same problem. Page displays properly
-
Rpc error calling an external procedure
I'm having a problem calling an external procedure running on Linux. The setup works using NT and a DLL, but when the function has been converted to a .so library, I get get ORA-28575: unable to open RPC connection to external procedure agent Now thi