Baffled on BGP route-reflectors and VPNV4

Help

The network is doc below:

My puzzlement is that the BGP routes from ISPA show up at PE2 and PE3 , but not PE4 & PE1.

PE3 acts as a Route-reflector and PE2 - thhru 4 area clients.

My understanding is that PE 2 being a route-reflector-client show send the ISPA to the route-reflector (PE3) and then PE3 should uppdate PE1 and PE4

this is not happpening until I make PE4 or PE1 a Route-reflector

Why ?

Also I try entering the command in the "router bgp 100" section

neighbor INTRT route-reflector-client  and get an error mesage saying

"Policy commands not alowed without an address family"

What's this trying to tell me ?

 image

Comments

  • Folks,

    More info 

    PE3 has the ISPA routes even though the VRF for ISPA does not exist.

    ON PE4 

    If I configure the vrf ISPA then the routes show up

    If I configure PE2 as a route-reflector then the routes show up

     

  • Hello!,

    I think that you are not allowed to input "neighbor INTRT route-reflector-client" because of the No bgp default ipv4-unicast" since you are not exchanging routes in that af...

    i would love to lab this up, if you could somehow u/l or attach the configs, would appreciate it, maybe learn a couple of things too.. also it could help clarify somethings.

  • image Olmargc

    Thanks for replying I will definitely look into removing the " no bgp default ipv4-uncast "

    statement.

    This is a small part of my learning lab that I setup on GNS3

    I can send you the files. I hope your not offend by some of my naming conventions

    words like "numnuts" "idiots" and "dipshit"

    Let me know 

     

    Ron

     

  • Send them!! i'll sure have a laugh :p

    i also want to try that out!. am i baffled on some ospf fa problems that i have ran across so, not much time to configure this ;).

  • Olmargc

    Ok the files on there way , just a reminder this is a work in progress


    Ron

     

  • Can't tell from your config samples or the drawing - how are you handling the route-target import/export values on PE1 and PE4? If you aren't importing the correct RT values, then this is expected. Have you tried issuing "no bgp default route-target filter" on PE1 and PE4?

  • Is the rr client statement under the global bgp process, or the vpnv4 process?  It should be under vpnv4. 

    Brian McGahan, CCIE #8593 (R&S/SP/Security)
     
    Internetwork Expert, Inc.
    Toll Free: 877-224-8987 x 705
    Outside US: 775-826-4344 x 705
    Online Community: http://www.IEOC.com

    On May 22, 2011, at 9:55 PM, "fred_b" <[email protected]> wrote:

    Can't tell from your config samples or the drawing - how are you handling the route-target import/export values on PE1 and PE4? If you aren't importing the correct RT values, then this is expected. Have you tried issuing "no bgp default route-target filter" on PE1 and PE4?




    INE - The Industry Leader in CCIE Preparation

    http://www.INE.com



    Subscription information may be found at:

    http://www.ieoc.com/forums/ForumSubscriptions.aspx
  • Brian /Fred

    Yes, the PE3 is configured for route-reflector under the VPNV4 section.

    Under the main bgp process the route-reflector command is not allowed, because I confiured "no bgp default ipv4-unicast"

     

    So I trying to figure out whether the route-reflector works in the same manner under the VPNv4 as the main process ?

     

    PE 2 is the BGP peer with an outside ISP and the routes from the ISP are listed under the VPNV4

    PE3 also has the routes from the ISP listed under the VPNV4  note: the vrf that is configured on PE2 does not exist on PE3

    PE4  and PE1 does not have the VRF configured for ISP and under the VPNV4 routes are not listed.

    I can get the routes to come in on the VPNV4 if I

    1) configured the VRF for ISP

    2) make PE2 and route-reflector-client of PE4

     

    Configs

     

    PE3


    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 1.1.1.1 peer-group INTRT

     neighbor 2.2.2.2 peer-group INTRT

     neighbor 4.4.4.4 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor INTRT route-reflector-client

      neighbor 1.1.1.1 activate

      neighbor 2.2.2.2 activate

      neighbor 4.4.4.4 activate

     exit-address-family


    PE3#show ip bgp vpnv4 rd 400:400

    BGP table version is 79, local router ID is 3.3.3.3

    Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

                  r RIB-failure, S Stale

    Origin codes: i - IGP, e - EGP, ? - incomplete


       Network          Next Hop            Metric LocPrf Weight Path

    Route Distinguisher: 400:400

    *>i66.66.66.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.67.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.68.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.69.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.70.0/24    2.2.2.2                  0    100      0 300 i

    *>i96.1.1.0/24      2.2.2.2                  0    100      0 ?

    PE3#

    ----------------------------------------------------------------------------

    PE2




    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 3.3.3.3 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor INTRT next-hop-self

      neighbor 3.3.3.3 activate

     exit-address-family

     !

     address-family ipv4 vrf ISP

      redistribute connected

      neighbor 96.1.1.1 remote-as 300

      neighbor 96.1.1.1 activate

      no synchronization

     exit-address-family

    !

     


     


    PE2(config-router-af)#do show ip bgp vpnv4 rd 400:400

    BGP table version is 32, local router ID is 2.2.2.2

    Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

                  r RIB-failure, S Stale

    Origin codes: i - IGP, e - EGP, ? - incomplete


       Network          Next Hop            Metric LocPrf Weight Path

    Route Distinguisher: 400:400 (default for vrf ISP)

    *> 66.66.66.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.67.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.68.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.69.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.70.0/24    96.1.1.1                 0             0 300 i

    *> 96.1.1.0/24      0.0.0.0                  0         32768 ?

    PE2(config-router-af)#

    ------------------------------------------------------------------------------




    PE4


    router bgp 100

     no synchronization

     bgp log-neighbor-changes

     no bgp default ipv4-unicast

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback 0

     neighbor 3.3.3.3 peer-group INTRT

     no auto-summary

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor 3.3.3.3 activate

     exit-address-family

     !



    PE4#show ip bgp vpnv4 rd 400:400

     

    PE4#

    ------------------------------------------------------------

    PE1


    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 3.3.3.3 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor 3.3.3.3 activate

     exit-address-family


    PE1#show ip bgp vpnv4 rd 400:400


    PE1#


     









  • >
    PE4  and PE1 does not have the VRF configured for ISP and under the VPNV4 routes are not listed.

     

    That's
    the reason why.  The RR actually is advertising them, but PE1 and PE4 are dropping them inbound. Look at the show bgp vpnv4 unicast neighbor [PE1|PE4] advertised-routes. 

     

    The
    reason why is that the VPNv4 process automatically filters inbound updates that have a Route Target (RT) value that's not in use by a local VRF, unless you are a route-reflector.  You can disable this behavior with the no bgp default route-target-filter command.

     

     

    HTH,

     

     


    Brian McGahan, CCIE #8593 (R&S/SP/Security)

    [email protected]

     

    Internetwork Expert, Inc.

    http://www.INE.com

    Online Community: http://www.IEOC.com

    CCIE Blog: http://blog.INE.com



     




    From: [email protected] [[email protected]] On Behalf Of rvanstone [[email protected]]

    Sent: Monday, May 23, 2011 1:17 PM

    To: Brian McGahan

    Subject: Re: [CCIE R&S] Baffled on BGP route-reflectors and VPNV4





    Brian /Fred

    Yes, the PE3 is configured for route-reflector under the VPNV4 section.

    Under the main bgp process the route-reflector command is not allowed, because I confiured "no bgp default ipv4-unicast"

     

    So I trying to figure out whether the route-reflector works in the same manner under the VPNv4 as the main process ?

     

    PE 2 is the BGP peer with an outside ISP and the routes from the ISP are listed under the VPNV4

    PE3 also has the routes from the ISP listed under the VPNV4  note: the vrf that is configured on PE2 does not exist on PE3

    PE4  and PE1 does not have the VRF configured for ISP and under the VPNV4 routes are not listed.

    I can get the routes to come in on the VPNV4 if I

    1) configured the VRF for ISP

    2) make PE2 and route-reflector-client of PE4

     

    Configs

     

    PE3

    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 1.1.1.1 peer-group INTRT

     neighbor 2.2.2.2 peer-group INTRT

     neighbor 4.4.4.4 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor INTRT route-reflector-client

      neighbor 1.1.1.1 activate

      neighbor 2.2.2.2 activate

      neighbor 4.4.4.4 activate

     exit-address-family


    PE3#show ip bgp vpnv4 rd 400:400

    BGP table version is 79, local router ID is 3.3.3.3

    Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

                  r RIB-failure, S Stale

    Origin codes: i - IGP, e - EGP, ? - incomplete


       Network          Next Hop            Metric LocPrf Weight Path

    Route Distinguisher: 400:400

    *>i66.66.66.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.67.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.68.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.69.0/24    2.2.2.2                  0    100      0 300 i

    *>i66.66.70.0/24    2.2.2.2                  0    100      0 300 i

    *>i96.1.1.0/24      2.2.2.2                  0    100      0 ?

    PE3#

    ----------------------------------------------------------------------------

    PE2

    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 3.3.3.3 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor INTRT next-hop-self

      neighbor 3.3.3.3 activate

     exit-address-family

     !

     address-family ipv4 vrf ISP

      redistribute connected

      neighbor 96.1.1.1 remote-as 300

      neighbor 96.1.1.1 activate

      no synchronization

     exit-address-family

    !

     

     


    PE2(config-router-af)#do show ip bgp vpnv4 rd 400:400

    BGP table version is 32, local router ID is 2.2.2.2

    Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,

                  r RIB-failure, S Stale

    Origin codes: i - IGP, e - EGP, ? - incomplete


       Network          Next Hop            Metric LocPrf Weight Path

    Route Distinguisher: 400:400 (default for vrf ISP)

    *> 66.66.66.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.67.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.68.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.69.0/24    96.1.1.1                 0             0 300 i

    *> 66.66.70.0/24    96.1.1.1                 0             0 300 i

    *> 96.1.1.0/24      0.0.0.0                  0         32768 ?

    PE2(config-router-af)#

    ------------------------------------------------------------------------------

    PE4


    router bgp 100

     no synchronization

     bgp log-neighbor-changes

     no bgp default ipv4-unicast

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback 0

     neighbor 3.3.3.3 peer-group INTRT

     no auto-summary

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor 3.3.3.3 activate

     exit-address-family

     !


    PE4#show ip bgp vpnv4 rd 400:400

     

    PE4#

    ------------------------------------------------------------

    PE1

    router bgp 100

     no bgp default ipv4-unicast

     bgp log-neighbor-changes

     neighbor INTRT peer-group

     neighbor INTRT remote-as 100

     neighbor INTRT update-source Loopback0

     neighbor 3.3.3.3 peer-group INTRT

     !

     address-family vpnv4

      neighbor INTRT send-community extended

      neighbor 3.3.3.3 activate

     exit-address-family


    PE1#show ip bgp vpnv4 rd 400:400


    PE1#


     








    INE - The Industry Leader in CCIE Preparation

    http://www.INE.com



    Subscription information may be found at:

    http://www.ieoc.com/forums/ForumSubscriptions.aspx




  • Brian

    Thanks for your quick response getting these types of unknown questions answer in this amount of time 

    really reaffirms my decision to go with INE training

    So yes PE4 now has the routes from ISP when I enter the command "no bgp default route-target filter"

    under the main BGP process.

     

    I think I might have found part of the issue, if I would of known about the command

    "show ip bgp vpnv4 all 4.4.4.4 0.0.0.0 sub", I would of at least realize that PE3 is forwarding the routes to PE4,

    but probably would have been stuck there.

    The command you stated I cannot find for VPNV4

    "show bgp vpnv4 unicast neighbor [PE1|PE4] advertised-routes"

     

     

     

  • The syntax is different between versions.  Try:

     

    show bgp vpnv4 unicast all neighbors 1.2.3.4 advertised-routes

     

    or

     

    show ip bgp vpnv4 all neighbors 1.2.3.4 advertised-routes

     

    where 1.2.3.4 is the neighbor’s address.

     

    Brian McGahan, CCIE #8593 (R&S/SP/Security)

    [email protected]

    Internetwork Expert, Inc.

    http://www.INE.com

    Toll Free: 877-224-8987 x 705

    Outside US: 775-826-4344 x 705

    Online Community: http://www.IEOC.com

    CCIE Blog: http://blog.INE.com

     

    From: [email protected] [mailto:[email protected]] On Behalf Of rvanstone
    Sent: Monday, May 23, 2011 2:42 PM
    To: Brian McGahan
    Subject: Re: [CCIE R&S] Baffled on BGP route-reflectors and VPNV4

     

    Brian

    Thanks for your quick response getting these types of unknown questions answer in this amount of time 

    really reaffirms my decision to go with INE training

    So yes PE4 now has the routes from ISP when I enter the command "no bgp default route-target filter"

    under the main BGP process.

     

    I think I might have found part of the issue, if I would of known about the command

    "show ip bgp vpnv4 all 4.4.4.4 0.0.0.0 sub", I would of at least realize that PE3 is forwarding the routes to PE4,

    but probably would have been stuck there.

    The command you stated I cannot find for VPNV4

    "show bgp vpnv4 unicast neighbor [PE1|PE4] advertised-routes"

     

     

     




    INE - The Industry Leader in CCIE Preparation
    http://www.INE.com

    Subscription information may be found at:
    http://www.ieoc.com/forums/ForumSubscriptions.aspx

  • Brian

    Ok I found it.

    Thanks for the help on this !

    Ron

Sign In or Register to comment.