CCNP Routing and Switching TSHOOT 300-135 Official Cert Guide (2015)
Part III. Troubleshooting Router Features
Chapter 17. Troubleshooting Redistribution
This chapter covers the following topics:
Troubleshooting IPv4 and IPv6 Redistribution: This section examines the issues that you should look out for when troubleshooting redistribution for IPv4 and IPv6 routing protocols such as RIP, EIGRP, OSPF, and BGP.
Redistribution Trouble Tickets: This section provides trouble tickets that demonstrate how you can use a structured troubleshooting process to solve a reported problem.
Troubleshooting Advanced Redistribution Issues: This section explains the issues that could arise when you redistribute at multiple points in the network. In addition, you will discover how to recognize them and solve them.
There are many reasons why you might need redistribution. It could be because you are performing a migration from one protocol to another, it might be because there are services or applications that need a specific routing protocol, it could be because you are in a mixed-vendor environment and only certain protocols are supported on the various devices, and it might even be because of political issues or country specific requirements. However, regardless of the reason, when you are using multiple routing protocols, you will more than likely be redistributing between the two so that all networks can be reached by all users in the network. As a result of this, you will more than likely experience some issues that will require you to troubleshoot.
This chapter explains the differences of redistributing into Enhanced Interior Gateway Routing Protocol (EIGRP), Open Shortest Path First (OSPF), Routing Information Protocol (RIP), and Border Gateway Protocol (BGP) for both IPv4 and IPv6. You will learn what to look out for so that you can quickly solve any issues related to redistribution. In addition, you will examine what could occur in environments that have multiple points of redistribution and how you can identify the issues and solve them.
“Do I Know This Already?” Quiz
The “Do I Know This Already?” quiz allows you to assess whether you should read this entire chapter thoroughly or jump to the “Exam Preparation Tasks” section. If you are in doubt about your answers to these questions or your own assessment of your knowledge of the topics, read the entire chapter. Table 17-1 lists the major headings in this chapter and their corresponding “Do I Know This Already?” quiz questions. You can find the answers in Appendix A, “Answers to the ‘Do I Know This Already?’ Quizzes.”
Table 17-1 “Do I Know This Already?” Section-to-Question Mapping
Caution
The goal of self-assessment is to gauge your mastery of the topics in this chapter. If you do not know the answer to a question or are only partially sure of the answer, you should mark that question as wrong for purposes of the self-assessment. Giving yourself credit for an answer that you correctly guess skews your self-assessment results and might provide you with a false sense of security.
1. What must be true for a route from one routing source to be redistributed into a different routing source?
a. The routing sources must have a similar metric.
b. The routing sources must have a similar administrative distance.
c. The route must be in the routing table on the router performing redistribution.
d. The route must be a directly connected route on the router performing redistribution.
2. Which of the following routing protocols have a default seed metric of unreachable? (Choose two answers.)
a. RIP
b. EIGRP
c. OSPF
d. BGP
3. Which of the following routing protocols have a default seed metric of 20?
a. RIPng
b. EIGRP for IPv6
c. OSPFv3
d. BGP
4. When redistributing, you have four options for the seed metric: the default value, specifying it with the default-metric command, using the metric option with the redistribute command, and using a route map. If all four of these are configured with different values, which will be preferred?
a. Default values
b. default-metric command
c. Metric option with the redistribute command
d. Route map attached to redistribute command
5. Which option is mandatory when redistributing EIGRP or OSPF routes into RIP?
a. metric
b. metric type
c. subnets
d. match
6. Which option is mandatory when redistributing RIP or OSPF routes into EIGRP?
a. metric
b. metric type
c. subnets
d. match
7. Which option is mandatory when redistributing classless networks into OSPF?
a. metric
b. metric type
c. subnets
d. match
8. Which of the following are not included when redistributing from one IPv6 routing protocol into another IPv6 routing protocol?
a. A prefix
b. A seed metric
c. Directly connected routes participating in the routing process
d. An administrative distance
9. During redistribution that uses route maps, what will occur to a route that matches a deny entry in the route map?
a. It will be redistributed with default values.
b. It will be redistributed with the values in the set clause.
c. It will be redistributed only if there is a routing table entry for it.
d. It will not be redistributed.
10. Which of the following are methods that can be used to solve routing issues caused by multi-point redistribution?
a. Modify the seed metrics of the redistributed routes
b. Modify the administrative distance of redistributed routes
c. Tag routes as they are redistributed and then deny them from being redistributed back into the originating routing source
d. Modify the metric used to reach the boundary routers
Foundation Topics
Troubleshooting IPv4 and IPv6 Redistribution
Route redistribution allows routes learned via one source (for example, statically configured, locally connected, or learned via a routing protocol) to be injected into a routing protocol. If two routing protocols are mutually redistributed, the routes learned via each routing protocol are injected into the other routing protocol.
This section explains how to troubleshoot redistribution issues.
Route Redistribution Overview
A router that connects two or more routing domains and will be the point of redistribution is known as a boundary router, as illustrated in Figure 17-1. A boundary router can redistribute static routes, connected routes, and routes learned via one routing protocol into another routing protocol.
Figure 17-1 Boundary Router
Redistribution occurs from the routing table into a routing protocols data structure (such as the EIGRP topology table, or the OSPF link-state database [LSDB]), as shown in Figure 17-2. This is a key concept for troubleshooting purposes because if the route is not in the routing table, it cannot be redistributed. Keep in mind that if it is not in the routing table, some other underlying issue needs to be troubleshot to get redistribution to work. For example, if you are redistributing EIGRP into OSPF and the EIGRP route is not in the routing table, that is not a redistribution problem; it is an EIGRP problem that has to be solved first.
Figure 17-2 Redistribution Occurs from the Routing Table into a Routing Protocols Data Structure
Different routing protocols use different types of metrics, as illustrated in Figure 17-3. Therefore, when a route is redistributed into a routing protocol, a metric used by the destination routing protocol needs to be associated with the route being redistributed.
Figure 17-3 Differing Metrics Between Routing Protocols
The metric assigned to a route being redistributed into another routing process is called a seed metric. The seed metric is needed to communicate relative levels of reachability between dissimilar routing protocols. A seed metric can be defined in one of three ways:
The default-metric command
The metric parameter in the redistribute command
A route map configuration applied to the redistribute command
The order of preference if multiple seed metrics are defined with the commands listed previously is 1) metric defined in route map that was applied to redistribute command; 2) metric parameter defined in redistribute command; 3) metric defined in default-metric command.
If a seed metric is not specified, a default seed metric is used. Keep in mind that RIP and EIGRP have a default seed metric that is considered unreachable. Therefore, if you do not manually configure a seed metric when redistributing routes into RIP or EIGRP, the redistributed route will not be reachable and therefore not advertised to other routers in the routing domain. OSPF has a default seed metric of 20, unless it is a BGP route being redistributed, which would have a seed metric of 1. When redistributing into BGP, BGP will use the exact metric of the Interior Gateway Protocol (IGP).
Note
For EIGRP and RIP you do not need to specify a metric when redistributing static or connected routes. In addition, for EIGRP you do not have to specify a metric when redistributing from another EIGRP autonomous system because the original metric is preserved.
Some routing protocols (for example, EIGRP and OSPF) can tag routes as either internal (that is, routes locally configured or connected) or external (that is, routes learned from another routing process) and give priority to internal routes versus external routes. The capability to distinguish between internal and external routes can help prevent a potential routing loop, where two routing protocols continually redistribute the same routes into one another at multiple redistribution points.
Before you move on to specific redistribution examples, keep the following in mind. Two prerequisites must be met for the routes of one IP routing protocol to be redistributed into another IP routing protocol:
The route needs to be installed in the border routers (router performing redistribution) IP routing table by the protocol being redistributed.
The destination IP routing protocol needs a reachable metric to assign to the redistributed routes.
Based on the previous two prerequisites, Table 17-2 lists various redistribution troubleshooting targets and recommendations for dealing with them.
Table 17-2 Troubleshooting Targets for Route Redistribution
Troubleshooting Redistribution into RIP
Your options are limited when redistributing routes into RIPv2 and RIPng. Review Example 17-1, it displays the options when redistributing OSPFv2 routes into RIPv2. This example is shown because it has the most options. When redistributing EIGRP, BGP, static or connected, you only have metric and route map as options. The most common issue you will run into when redistributing into RIPv2 is related to the metric. Remember that the seed metric by default is set to infinity (unreachable). Therefore, if you fail to manually set the metric using any of the options listed earlier in the chapter, routes will not be advertised to the other routers in the RIPv2 domain. In addition, if you configure the metric too high at the redistribution point, you could cause the route to become unreachable further in your RIPv2 domain, because RIP’s metric is based on hop count. For example, if you specify a metric of 10 during redistribution, a router that is 6 hops away from the redistribution router will not receive the redistributed routes because the routes will be further than 15 hops away (10 + 6 = 16).
Also, if the wrong route map is applied, or there is an error within the route map, routes will not be redistributed properly.
Example 17-1 RIPv2 Redistribution Options
R1(config)#router rip
R1(config-router)#redistribute ospf 1 ?
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
vrf VPN Routing/Forwarding Instance
<cr>
With RIP next generation (RIPng) redistribution, you can experience all the same issues that you do with RIPv2 in addition to another. By default, with RIPv2, the networks of the local interfaces participating in the routing process that is being redistributed on the border router into RIPv2 will be redistributed as well. However, with RIPng, they will not. Therefore, if you want to include the networks associated with the interfaces participating in the routing process that is being redistributed into RIPng on the boundary router, you need to use the include-connected keyword, as shown in Example 17-2.
Example 17-2 RIPng Redistribution Options
R1(config)#ipv6 router rip
R1(config-rtr)#redistribute ospf 1 ?
include-connected Include connected
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
<cr>
When redistributing OSPF into RIP, you also have the match option, which allows you to match just internal, just external, just nssa-external routes, or a combination of them. If the wrong options are chosen, the wrong routes will be redistributed resulting in missing routes.
On the boundary router, you can verify which routing protocols are being redistributed with the show ip protocols command and the routes that were redistributed with the show ip rip database command. In Example 17-3, the output of show ip protocols indicates that the EIGRP process with an autonomous system number of 100 is being redistributed into RIPv2. In Example 17-4, the output indicates that the 10.1.3.0/24 network is redistributed.
Example 17-3 Verifying Redistribution with show ip protocols
R2#show ip protocols
*** IP Routing is NSF aware ***
...output omitted...
Routing Protocol is "rip"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Sending updates every 30 seconds, next due in 21 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
Redistributing: eigrp 100, rip
Default version control: send version 2, receive version 2
Interface Send Recv Triggered RIP Key-chain
...output omitted...
Example 17-4 Verifying Redistribution with show ip rip database
R2#show ip rip database
10.0.0.0/8 auto-summary
10.1.1.0/24
[1] via 10.1.12.1, 00:00:19, GigabitEthernet0/0
10.1.3.0/24 redistributed
[5] via 10.1.23.3,
10.1.12.0/24 directly connected, GigabitEthernet0/0
10.1.14.0/24
[1] via 10.1.12.1, 00:00:19, GigabitEthernet0/0
10.1.23.0/24 directly connected, GigabitEthernet1/0
To verify that other RIP routers in the RIP domain are learning about the redistributed route, use the show ip route and show ip rip database commands on those routers, as shown in Example 17-5.
Example 17-5 Verifying Redistributed Routes in the RIP Domain
R1#show ip rip database
10.0.0.0/8 auto-summary
10.1.1.0/24 directly connected, GigabitEthernet0/0
10.1.3.0/24
[5] via 10.1.12.2, 00:00:00, GigabitEthernet1/0
10.1.12.0/24 directly connected, GigabitEthernet1/0
10.1.14.0/24 directly connected, FastEthernet3/0
10.1.23.0/24
[1] via 10.1.12.2, 00:00:00, GigabitEthernet1/0
R1#show ip route
...output omitted...
10.0.0.0/8 is variably subnetted, 8 subnets, 2 masks
C 10.1.1.0/24 is directly connected, GigabitEthernet0/0
L 10.1.1.1/32 is directly connected, GigabitEthernet0/0
R 10.1.3.0/24 [120/5] via 10.1.12.2, 00:00:03, GigabitEthernet1/0
C 10.1.12.0/24 is directly connected, GigabitEthernet1/0
L 10.1.12.1/32 is directly connected, GigabitEthernet1/0
C 10.1.14.0/24 is directly connected, FastEthernet3/0
L 10.1.14.1/32 is directly connected, FastEthernet3/0
R 10.1.23.0/24 [120/1] via 10.1.12.2, 00:00:03, GigabitEthernet1/0
For RIPng, the show ipv6 protocols output is more detailed for redistribution, as shown in Example 17-6. Notice how it states the protocol, the seed metric, and whether connected networks are included.
Example 17-6 Verifying RIPng Redistribution with show ipv6 protocols
R2#show ipv6 protocols
...output omitted...
IPv6 Routing Protocol is "rip TSHOOT_RIP"
Interfaces:
GigabitEthernet0/0
Redistribution:
Redistributing protocol eigrp 100 with metric 7 include-connected
...output omitted...
Troubleshooting Redistribution into EIGRP
When redistributing into EIGRP for IPv4 you can apply a metric with the metric keyword or a route map with the route-map keyword. If you are redistributing OSPF into EIGRP, as shown in Example 17-7, you will also have the option to specify the match option which allows you to match just internal, just external, just nssa-external routes, or a combination of them.
The most common issue you will run into when redistributing into EIGRP for IPv4 is related to the metric. Remember that the seed metric by default is set to infinity (unreachable). Therefore, if you fail to manually set the metric using any of the options listed earlier in the chapter, routes will not be advertised to the other routers in the EIGRP autonomous system. Unlike RIP, you will not have to worry about configuring a metric that is too high and causing networks to be unreachable. However, you have to consider if the metrics you specify will cause suboptimal routing if you have multiple redistribution points in the routing domain.
Also, if the wrong route map is applied, or there is an error within the route map, routes will not be redistributed properly.
Example 17-7 EIGRP for IPv4 Redistribution Options
R1(config)#router eigrp 1
R1(config-router)#redistribute ospf 1 ?
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
<cr>
With EIGRP for IPv6 you have the same match, metric, and route-map keywords, in addition to the include-connected keyword. By default, with EIGRP for IPv4, the networks associated with the local interfaces participating in the redistributed routing process will be redistributed as well. However, with EIGRP for IPv6 they will not. Therefore, if you want to include the networks associated with the local interfaces participating in the routing process that is being redistributed, you need to use the include-connected keyword, as shown in Example 17-8.
Example 17-8 EIGRP for IPv6 Redistribution Options
R1(config)#ipv6 router eigrp 1
R1(config-rtr)#redistribute ospf 1 ?
include-connected Include connected
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
<cr>
On the boundary router, you can verify which protocols are being redistributed into EIGRP for IPv4 with the show ip protocols command. As shown in Example 17-9, RIP routes are being redistributed into EIGRP for IPv4.
Example 17-9 Verifying Protocols That Are Being Redistributed into EIGRP for IPv4
R2#show ip protocols
*** IP Routing is NSF aware ***
Routing Protocol is "eigrp 100"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
Redistributing: rip
EIGRP-IPv4 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
...output omitted...
When reviewing the EIGRP for IPv4 topology table with the show ip eigrp topology command, you can identify the routes that have been injected into the EIGRP process via redistribution because it states via Redistributed, as shown in Example 17-10.
Example 17-10 Verifying Routes Redistributed into EIGRP for IPv4 (Topology Table)
R2#show ip eigrp topology
EIGRP-IPv4 Topology Table for AS(100)/ID(203.0.113.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 10.1.12.0/24, 1 successors, FD is 2560000256
via Redistributed (2560000256/0)
P 10.1.14.0/24, 1 successors, FD is 2560000256
via Redistributed (2560000256/0)
P 10.1.3.0/24, 1 successors, FD is 3072
via 10.1.23.3 (3072/2816), GigabitEthernet1/0
P 10.1.23.0/24, 1 successors, FD is 2816
via Connected, GigabitEthernet1/0
P 10.1.1.0/24, 1 successors, FD is 2560000256
via Redistributed (2560000256/0)
When examining a redistributed route in the routing table on the boundary router, as shown in Example 17-11, with the show ip route ip-address command, it indicates how the route is known, how it is being redistributed, and the EIGRP metric values that are being used at the redistribution point.
Example 17-11 Verifying Routes Redistributed into EIGRP for IPv4 (Routing Table)
R2#show ip route 10.1.1.0
Routing entry for 10.1.1.0/24
Known via "rip", distance 120, metric 1
Redistributing via eigrp 100, rip
Advertised by eigrp 100 metric 1 1 1 1 1
Last update from 10.1.12.1 on GigabitEthernet0/0, 00:00:19 ago
Routing Descriptor Blocks:
* 10.1.12.1, from 10.1.12.1, 00:00:19 ago, via GigabitEthernet0/0
Route metric is 1, traffic share count is 1
When examining the routing table on other routers (not the boundary router) in the EIGRP for IPv4 autonomous system, the redistributed routes will have an administrative distance (AD) of 170 by default and a code of D EX, as shown in Example 17-12.
Example 17-12 Examining EIGRP for IPv4 Redistributed Routes in a Routing Table
R3#show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is not set
10.0.0.0/8 is variably subnetted, 7 subnets, 2 masks
D EX 10.1.1.0/24
[170/2560000512] via 10.1.23.2, 00:04:38, GigabitEthernet1/0
C 10.1.3.0/24 is directly connected, GigabitEthernet0/0
L 10.1.3.3/32 is directly connected, GigabitEthernet0/0
D EX 10.1.12.0/24
[170/2560000512] via 10.1.23.2, 00:04:38, GigabitEthernet1/0
D EX 10.1.14.0/24
[170/2560000512] via 10.1.23.2, 00:04:38, GigabitEthernet1/0
C 10.1.23.0/24 is directly connected, GigabitEthernet1/0
L 10.1.23.3/32 is directly connected, GigabitEthernet1/0
For EIGRP for IPv6, the show ipv6 protocols output is more detailed for redistribution, as shown in Example 17-13. Notice how it states the protocol, the seed metric, and whether connected networks are included.
Example 17-13 Verifying EIGRP for IPv6 Redistribution with show ipv6 protocols
R2#show ipv6 protocols
...output omitted...
IPv6 Routing Protocol is "eigrp 100"
EIGRP-IPv6 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
NSF-aware route hold timer is 240
Router-ID: 203.0.113.1
Topology : 0 (base)
Active Timer: 3 min
Distance: internal 90 external 170
Maximum path: 16
Maximum hopcount 100
Maximum metric variance 1
Interfaces:
GigabitEthernet1/0
Redistribution:
Redistributing protocol rip TSHOOT_RIP with metric 1 1 1 1 1 include-connected
The output of show ipv6 eigrp topology on the boundary router also indicates which routes are redistributed, as shown in Example 17-14.
Example 17-14 Verifying EIGRP for IPv6 Redistribution with show ipv6 eigrp topology
R2#show ipv6 eigrp topology
EIGRP-IPv6 Topology Table for AS(100)/ID(203.0.113.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 2001:DB8:0:1::/64, 1 successors, FD is 2560000256
via Redistributed (2560000256/0)
P 2001:DB8:0:3::/64, 1 successors, FD is 3072
via FE80::C804:10FF:FE2C:1C (3072/2816), GigabitEthernet1/0
P 2001:DB8:0:12::/64, 1 successors, FD is 2560000256
via Redistributed (2560000256/0)
P 2001:DB8:0:23::/64, 1 successors, FD is 2816
via Connected, GigabitEthernet1/0
When examining the routing table on other routers (not the boundary router) in the EIGRP for IPv6 autonomous system, the redistributed routes will have an administrative distance of 170 by default and a code of EX, as shown in Example 17-15.
Example 17-15 Verifying EIGRP for IPv6 Redistributed Routes
R3#show ipv6 route
IPv6 Routing Table - default - 7 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, H - NHRP, I1 - ISIS L1
I2 - ISIS L2, IA - ISIS interarea, IS - ISIS summary, D - EIGRP
EX - EIGRP external, ND - ND Default, NDp - ND Prefix, DCE - Destination
NDr - Redirect, O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF ext 1
OE2 - OSPF ext 2, ON1 - OSPF NSSA ext 1, ON2 - OSPF NSSA ext 2, l - LISP
EX 2001:DB8:0:1::/64 [170/2560000512]
via FE80::C802:AFF:FE88:1C, GigabitEthernet1/0
C 2001:DB8:0:3::/64 [0/0]
via GigabitEthernet0/0, directly connected
L 2001:DB8:0:3::3/128 [0/0]
via GigabitEthernet0/0, receive
EX 2001:DB8:0:12::/64 [170/2560000512]
via FE80::C802:AFF:FE88:1C, GigabitEthernet1/0
C 2001:DB8:0:23::/64 [0/0]
via GigabitEthernet1/0, directly connected
L 2001:DB8:0:23::3/128 [0/0]
via GigabitEthernet1/0, receive
L FF00::/8 [0/0]
via Null0, receive
Troubleshooting Redistribution into OSPF
When redistributing into OSPF, you have more options than other routing protocols, as shown in Example 17-16. The metric option allows you to provide a seed metric at the redistribution point. The default seed metric is 20 with OSPF; therefore, providing a metric is not mandatory. If you forget to provide a metric, redistributed routes will still be advertised to other routers in the OSPF domain. The metric-type option is used to define the type of OSPF external route the redistributed route will be. By default, it will be Type 2, which is represented as E2 in the routing table. With E2, each router will preserve the seed metric for the external routes. Type 1, which is represented as E1 in the routing table, allows each router to take the seed metric and add to it all the other link costs to reach the redistribution point in the domain. Therefore, each router will have a metric that is a combination of the seed metric and the total cost to reach the redistribution router. With the nssa-only option, you can limit redistributed routes to the NSSA area only, and with the route-map option, you can reference a route map that provides more granular control over the routes that are being redistributed. The subnets keyword is an extremely important option. Without the subnets keyword, only classful networks will be redistributed (for example, a Class A address with a /8 mask, a Class B address with a /16 mask, and a Class C address with a /24 mask). With the subnets keyword, all classless and classful networks will be redistributed. Therefore, if you have any subnets that you want to redistribute, the subnets keyword is mandatory. The tag keyword can be used to add a numeric ID (tag) to the route so the route can be referenced by the tag at a later point for filtering or manipulation purposes.
Example 17-16 OSPFv2 Redistribution Options
R1(config)#router ospf 1
R1(config-router)#redistribute eigrp 100 ?
metric Metric for redistributed routes
metric-type OSPF/IS-IS exterior metric type for redistributed routes
nssa-only Limit redistributed routes to NSSA areas
route-map Route map reference
subnets Consider subnets for redistribution into OSPF
tag Set tag for routes redistributed into OSPF
<cr>
Look closely at Example 17-17, which displays the options available when redistributing into OSPFv3. What has been added and what is missing when compared to OSPFv2? The include-connected keyword has been added. By default, with OSPFv2, the networks associated with the local interfaces that are participating in the routing process that is being redistributed will be redistributed as well. However, with OSPFv3, they will not. Therefore, if you want to include the networks associated with the interfaces participating in the routing protocol that is being redistributed on the ASBR, you need to use the include-connected keyword.
The subnets keyword is not an option with OSPFv3 because the concept of classful and classless does not exist with IPv6.
Example 17-17 OSPFv3 Redistribution Options
R1(config)#ipv6 router ospf 1
R1(config-rtr)#redistribute eigrp 100 ?
include-connected Include connected
metric Metric for redistributed routes
metric-type OSPF/IS-IS exterior metric type for redistributed routes
nssa-only Limit redistributed routes to NSSA areas
route-map Route map reference
tag Set tag for routes redistributed into OSPF
<cr>
The show ip protocols command enables you to verify which routing protocols are being redistributed into the OSPFv2 process. In Example 17-18, you can see that EIGRP 100 routes, including subnets, are being redistributed into the OSPFv2 process.
Example 17-18 Verifying Protocols Being Redistributed into OSPFv2
R2#show ip protocols
...output omitted...
Routing Protocol is "ospf 1"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Router ID 203.0.113.1
It is an autonomous system boundary router
Redistributing External Routes from,
eigrp 100, includes subnets in redistribution
Number of areas in this router is 1. 1 normal 0 stub 0 nssa
Maximum path: 4
Routing for Networks:
10.1.12.2 0.0.0.0 area 0
Routing Information Sources:
Gateway Distance Last Update
10.1.14.1 110 00:19:48
Distance: (default is 110)
Routes redistributed into an OSPFv2 normal area will be advertised within a Type 5 link-state advertisement (LSA). Routes redistributed into an OSPFv2 NSSA or totally NSSA area will be advertised within a Type 7 LSA and then converted to a Type 5 LSA at an Area Border Router (ABR). You can view the redistributed routes that are injected into the OSPFv2 LSDB with the show ip ospf database command, as shown in Example 17-19. In this example, the 10.1.3.0 and 10.1.23.0 networks have been redistributed into the OSPFv2 routing process.
Example 17-19 Verifying Redistributed Routes in the OSPFv2 LSDB
R2#show ip ospf database
OSPF Router with ID (203.0.113.1) (Process ID 1)
Router Link States (Area 0)
Link ID ADV Router Age Seq# Checksum Link count
10.1.14.1 10.1.14.1 738 0x80000003 0x009AEA 3
203.0.113.1 203.0.113.1 596 0x80000003 0x005829 1
Net Link States (Area 0)
Link ID ADV Router Age Seq# Checksum
10.1.12.1 10.1.14.1 738 0x80000002 0x001F8F
Type-5 AS External Link States
Link ID ADV Router Age Seq# Checksum Tag
10.1.3.0 203.0.113.1 596 0x80000002 0x00EB67 0
10.1.23.0 203.0.113.1 596 0x80000002 0x000F30 0
When examining a redistributed route in the routing table on the boundary router (Autonomous System Boundary Router [ASBR]), as shown in Example 17-20, with the show ip route ip_address command, it indicates how the route is known, how it is being redistributed, and how it is being advertised. In this case, the route is known via EIGRP 100 and is being redistributed into the OSPF 1 process with the subnets keyword.
Example 17-20 Verifying Redistributed Routes in the ASBR’s Routing Table
R2#show ip route 10.1.3.0
Routing entry for 10.1.3.0/24
Known via "eigrp 100", distance 90, metric 3072, type internal
Redistributing via eigrp 100, ospf 1
Advertised by ospf 1 subnets
Last update from 10.1.23.3 on GigabitEthernet1/0, 00:50:19 ago
Routing Descriptor Blocks:
* 10.1.23.3, from 10.1.23.3, 00:50:19 ago, via GigabitEthernet1/0
Route metric is 3072, traffic share count is 1
Total delay is 20 microseconds, minimum bandwidth is 1000000 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1
When examining the routing table on other routers (not the ASBR) in the OSPFv2 domain, by default the redistributed routes will have an AD of 110 and a code of O E2, as shown in Example 17-21. If you change the metric type to E1, they will appear with a code of E1, and if it is an NSSA or totally NSSA area they will appear as O N1 or O N2.
Example 17-21 Examining OSPFv2 Redistributed Routes in a Routing Table
R1#show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is not set
10.0.0.0/8 is variably subnetted, 8 subnets, 2 masks
C 10.1.1.0/24 is directly connected, GigabitEthernet0/0
L 10.1.1.1/32 is directly connected, GigabitEthernet0/0
O E2 10.1.3.0/24 [110/20] via 10.1.12.2, 00:49:11, GigabitEthernet1/0
C 10.1.12.0/24 is directly connected, GigabitEthernet1/0
L 10.1.12.1/32 is directly connected, GigabitEthernet1/0
C 10.1.14.0/24 is directly connected, FastEthernet3/0
L 10.1.14.1/32 is directly connected, FastEthernet3/0
O E2 10.1.23.0/24 [110/20] via 10.1.12.2, 00:49:11, GigabitEthernet1/0
For OSPFv3, the show ipv6 protocols output is seen in Example 17-22. Notice how it states the protocol, the seed metric, and if connected networks are included.
Example 17-22 Verifying OSPFv3 Redistribution with show ipv6 protocols
R2#show ipv6 protocols
...output omitted...
IPv6 Routing Protocol is "ospf 1"
Router ID 2.2.2.2
Autonomous system boundary router
Number of areas: 1 normal, 0 stub, 0 nssa
Interfaces (Area 0):
GigabitEthernet0/0
Redistribution:
Redistributing protocol eigrp 100 with metric 10 include-connected
The output of show ipv6 ospf database on the ASBR will identify the external Type 5 routes just like OSPFv2, as shown in Example 17-23.
Example 17-23 Verifying OSPFv3 Redistribution with show ipv6 ospf database
R2#show ipv6 ospf database
OSPFv3 Router with ID (2.2.2.2) (Process ID 1)
Router Link States (Area 0)
ADV Router Age Seq# Fragment ID Link count Bits
1.1.1.1 1429 0x80000004 0 1 B
2.2.2.2 1446 0x80000003 0 1 E
Net Link States (Area 0)
ADV Router Age Seq# Link ID Rtr count
1.1.1.1 1429 0x80000002 4 2
Inter Area Prefix Link States (Area 0)
ADV Router Age Seq# Prefix
1.1.1.1 1693 0x80000002 2001:DB8:0:14::/64
Link (Type-8) Link States (Area 0)
ADV Router Age Seq# Link ID Interface
1.1.1.1 1693 0x80000002 4 Gi0/0
2.2.2.2 1446 0x80000002 3 Gi0/0
Intra Area Prefix Link States (Area 0)
ADV Router Age Seq# Link ID Ref-lstype Ref-LSID
1.1.1.1 1429 0x80000006 0 0x2001 0
1.1.1.1 1429 0x80000002 4096 0x2002 4
Type-5 AS External Link States
ADV Router Age Seq# Prefix
2.2.2.2 46 0x80000003 2001:DB8:0:3::/64
2.2.2.2 46 0x80000003 2001:DB8:0:23::/64
When examining the routing table on other routers (not the ASBR) in the OSPFv3 domain, by default the redistributed routes will have an administrative distance of 110 and a code of OE2, as shown in Example 17-24. If the metric type is changed to Type 1, the code would be OE1. In an NSSA or totally NSSA area, the redistributed routes would be listed as ON1 or ON2.
Example 17-24 Verifying OSPFv3 Redistributed Routes
R1#show ipv6 route
IPv6 Routing Table - default - 9 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, H - NHRP, I1 - ISIS L1
I2 - ISIS L2, IA - ISIS interarea, IS - ISIS summary, D - EIGRP
EX - EIGRP external, ND - ND Default, NDp - ND Prefix, DCE - Destination
NDr - Redirect, O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF ext 1
OE2 - OSPF ext 2, ON1 - OSPF NSSA ext 1, ON2 - OSPF NSSA ext 2, l - LISP
C 2001:DB8:0:1::/64 [0/0]
via GigabitEthernet0/0, directly connected
L 2001:DB8:0:1::1/128 [0/0]
via GigabitEthernet0/0, receive
OE2 2001:DB8:0:3::/64 [110/10]
via FE80::C802:AFF:FE88:8, GigabitEthernet1/0
C 2001:DB8:0:12::/64 [0/0]
via GigabitEthernet1/0, directly connected
L 2001:DB8:0:12::1/128 [0/0]
via GigabitEthernet1/0, receive
C 2001:DB8:0:14::/64 [0/0]
via FastEthernet3/0, directly connected
L 2001:DB8:0:14::1/128 [0/0]
via FastEthernet3/0, receive
OE2 2001:DB8:0:23::/64 [110/10]
via FE80::C802:AFF:FE88:8, GigabitEthernet1/0
L FF00::/8 [0/0]
via Null0, receive
Note that if you are redistributing from BGP into OSPF, EIGRP, or RIP, only External BGP (eBGP) routes will be redistributed by default. If you want Internal BGP (iBGP) routes to be redistributed, in router BGP configuration mode, you must issue the bgp redistribute-internal command.
Troubleshooting Redistribution into BGP
When redistributing into BGP for IPv4, you have the same options found with RIP and EIGRP. You can apply a metric with the metric keyword or a route map with the route-map keyword. If you are redistributing OSPF into BGP, as shown in Example 17-25, you will also have the option to specify the match option, which allows you to match just internal, just external, just nssa-external routes, or a combination of them. With BGP, only internal OSPF routes will be redistributed by default. If you want external OSPF routes to be redistributed, you have to indicate so during redistribution.
The metric keyword is not required because BGP will use the IGP metric by default. If the wrong route map is applied, or there is an error within the route map, routes will not be redistributed properly.
Example 17-25 BGP for IPv4 Redistribution Options
R1(config)#router bgp 65001
R1(config-router)#address-family ipv4 unicast
R1(config-router-af)#redistribute ospf 1 ?
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
vrf VPN Routing/Forwarding Instance
<cr>
With BGP for IPv6, you have the same match, metric, and route-map keywords, in addition to the include-connected keyword. By default, with BGP for IPv4, the networks of the local interfaces participating in the routing protocol that is being redistributed on the border router will be redistributed as well. However, with BGP for IPv6, they will not. Therefore, if you want to redistribute the networks associated with the local interfaces participating in the routing process being redistributed into BGP for IPv6, you need to use the include-connected keyword, as shown inExample 17-26.
Example 17-26 BGP for IPv6 Redistribution Options
R1(config)#router bgp 65001
R1(config-router)#address-family ipv6 unicast
R1(config-router-af)#redistribute ospf 1 ?
include-connected Include connected
match Redistribution of OSPF routes
metric Metric for redistributed routes
route-map Route map reference
<cr>
Using the commands show ip protocols and show ipv6 protocols, you can verify which protocols are being redistributed into the BGP routing process, as shown in Example 17-27.
Example 17-27 Verifying Protocols Being Redistributed into BGP
R2#show ip protocols
...output omitted...
Routing Protocol is "bgp 65500"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
IGP synchronization is disabled
Automatic route summarization is disabled
Redistributing: ospf 1 (internal)
Neighbor(s):
Address FiltIn FiltOut DistIn DistOut Weight RouteMap
10.1.23.3
Maximum path: 1
Routing Information Sources:
Gateway Distance Last Update
Distance: external 20 internal 200 local 200
R2#show ipv6 protocols
...output omitted...
IPv6 Routing Protocol is "bgp 65500"
IGP synchronization is disabled
Redistribution:
Redistributing protocol ospf 1 (internal) include-connected
Neighbor(s):
Address FiltIn FiltOut Weight RoutemapIn RoutemapOut
2001:DB8:0:23::3
In the BGP table, redistributed routes appear with a question mark (?) under the Path column, as shown in Example 17-28.
Example 17-28 Verifying Redistributed Routes in the BGP Table
R2#show bgp all
For address family: IPv4 Unicast
BGP table version is 4, local router ID is 203.0.113.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*> 10.1.1.0/24 10.1.12.1 2 32768 ?
*> 10.1.12.0/24 0.0.0.0 0 32768 ?
*> 10.1.14.0/24 10.1.12.1 2 32768 ?
For address family: IPv6 Unicast
BGP table version is 4, local router ID is 203.0.113.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*> 2001:DB8:0:1::/64
:: 2 32768 ?
*> 2001:DB8:0:12::/64
:: 0 32768 ?
*> 2001:DB8:0:14::/64
:: 2 32768 ?
For address family: IPv4 Multicast
For address family: MVPNv4 Unicast
Troubleshooting Redistribution with Route Maps
When applying a route map to the redistribution command, you have a few extra items to verify during the troubleshooting process:
Is the correct route map applied?
Is permit or deny specified for the sequence, and is it correct? A permit sequence indicates that what is matched will be redistributed. A deny sequence indicates that what is matched will not be redistributed.
If there is an access list or prefix list being used in the match statement, you need to verify that they are correct using the show {ip|ipv6} access-list command or the show {ip|ipv6} prefix-list command.
If there are set statements, you need to verify that the correct values have been specified to accomplish the desired goal.
If a route does not match any of the match statements in any of the sequences, it will fall into the implicit deny sequence at the end of the route map and not be redistributed.
If a route map is attached to the redistribution command but that route map does not exist, none of the routes will be redistributed.
Redistribution Trouble Tickets
This section presents various trouble tickets relating to the topics discussed earlier in the chapter. The purpose of these trouble tickets is to give a process that you can follow when troubleshooting in the real world or in an exam environment. All trouble tickets in this section are based on the topology depicted in Figure 17-4.
Figure 17-4 Redistribution Trouble Tickets Topology
Trouble Ticket 17-1
Problem: Users in the IPv4 Branch site indicate that they are not able to access any resources outside of the Branch office.
On Branch the first thing you check (using the show ip route command) is the routing table to see which routes Branch knows, as shown in Example 17-29. The output indicates that Branch only knows about connected and local routes.
Example 17-29 Verifying the Routing Table on Branch
Branch#show ip route
...output omitted...
10.0.0.0/8 is variably subnetted, 4 subnets, 2 masks
C 10.1.4.0/24 is directly connected, GigabitEthernet0/0
L 10.1.4.4/32 is directly connected, GigabitEthernet0/0
C 10.1.14.0/24 is directly connected, FastEthernet1/0
L 10.1.14.4/32 is directly connected, FastEthernet1/0
You decide that an EIGRP neighbor relationship might not have been formed with R1. Therefore, you issue the show ip eigrp neighbors command on Branch to confirm. As shown in Example 17-30, the device with an IP address of 10.1.14.1 has formed an adjacency with branch. Using theshow cdp neighbors detail command reveals that the IP address belongs to R1 as shown in the same example.
Example 17-30 Verifying EIGRP Neighbors on Branch
Branch#show ip eigrp neighbors
EIGRP-IPv4 VR(TSHOOT) Address-Family Neighbors for AS(100)
H Address Interface Hold Uptime SRTT RTO Q Seq
(sec) (ms) Cnt Num
0 10.1.14.1 Fa1/0 12 01:40:12 62 372 0 6
Branch#show cdp neighbors detail
-------------------------
Device ID: R1
Entry address(es):
IP address: 10.1.14.1
IPv6 address: 2001:DB8:0:14::1 (global unicast)
IPv6 address: FE80::C801:AFF:FE88:54 (link-local)
...output omitted...
Because R1 and Branch are neighbors, but Branch is not learning any routes from R1, you decide to check whether there are any incoming route filters configured on Branch with the show ip protocols command. The output of Example 17-31 shows that there are no route filters.
Example 17-31 Verifying Route Filters on Branch
Branch#show ip protocols
*** IP Routing is NSF aware ***
Routing Protocol is "eigrp 100"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
...output omitted...
Next, you decide to check for outbound route filters on R1 using show ip protocols. As shown in Example 17-32, there are no route filters.
Example 17-32 Verifying Route Filters on R1
R1#show ip protocols
*** IP Routing is NSF aware ***
Routing Protocol is "eigrp 100"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
Redistributing: ospf 1
EIGRP-IPv4 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
NSF-aware route hold timer is 240
...output omitted...
Because Figure 17-4 shows that R1 is a boundary router performing redistribution, you shift your attention over to R1’s redistribution configuration to make sure that the OSPF routes are being redistributed into EIGRP. In Example 17-33, the output of show ip protocols indicates that OSPF process 1 is being redistributed into EIGRP autonomous system 100. However, so far all your troubleshooting efforts are indicating that Branch is not learning any redistributed routes.
Example 17-33 Verifying OSPF Is Being Redistributed into EIGRP
R1#show ip protocols
*** IP Routing is NSF aware ***
Routing Protocol is "eigrp 100"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
Redistributing: ospf 1
EIGRP-IPv4 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
NSF-aware route hold timer is 240
...output omitted...
You now issue the show ip eigrp topology command on R1. This will confirm if routes are truly being redistributed from OSPF into EIGRP. As shown in Example 17-34, none of the OSPF routes are being redistributed into the EIGRP autonomous system.
Example 17-34 Verifying Redistributed Routes are in the EIGRP Topology Table
R1#show ip eigrp topology
EIGRP-IPv4 Topology Table for AS(100)/ID(10.1.14.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 10.1.14.0/24, 1 successors, FD is 28160
via Connected, FastEthernet3/0
P 10.1.4.0/24, 1 successors, FD is 28416
via 10.1.14.4 (28416/2816), FastEthernet3/0
You recall that for routes to be redistributed they have to be in the routing table. Therefore, on R1 you issue the show ip route command, as shown in Example 17-35, and confirm that there are routes in the routing table that should be redistributed.
Example 17-35 Verifying Routes to be Redistributed Are in the Routing Table
R1#show ip route
...output omitted...
10.0.0.0/8 is variably subnetted, 8 subnets, 2 masks
C 10.1.1.0/24 is directly connected, GigabitEthernet0/0
L 10.1.1.1/32 is directly connected, GigabitEthernet0/0
D 10.1.4.0/24 [90/28416] via 10.1.14.4, 02:05:59, FastEthernet3/0
C 10.1.12.0/24 is directly connected, GigabitEthernet1/0
L 10.1.12.1/32 is directly connected, GigabitEthernet1/0
C 10.1.14.0/24 is directly connected, FastEthernet3/0
L 10.1.14.1/32 is directly connected, FastEthernet3/0
O 10.1.23.0/24 [110/2] via 10.1.12.2, 02:02:11, GigabitEthernet1/0
192.0.2.0/32 is subnetted, 1 subnets
O E2 192.0.2.1 [110/1] via 10.1.12.2, 01:03:22, GigabitEthernet1/0
Next you review the redistribute command configured on R1 for the EIGRP process with the show run | section router eigrp command, as shown in Example 17-36. You notice that there is the command redistribute ospf 1; however, you quickly realize that the metric is missing. The metric is mandatory with EIGRP. If you fail to specify one, either with the default-metric command, the metric command, or in a route map, the routes to be redistributed will be unreachable and not redistributed. You have located the issue.
Example 17-36 Verifying the redistribute Command on R1
R1#show run | section router eigrp
router eigrp 100
network 10.1.14.1 0.0.0.0
redistribute ospf 1
ipv6 router eigrp 100
redistribute ospf 1 metric 100000 100 255 1 1500 include-connected
To solve the issue, you reissue the redistribute ospf 1 command with the metric values of 100000 100 255 1 1500. You then issue the show ip eigrp topology command, as shown in Example 17-37, and confirm that routes are now redistributed.
Example 17-37 Verifying Routes to Be Redistributed Are in the R1 Topology Table
R1#show ip eigrp topology
EIGRP-IPv4 Topology Table for AS(100)/ID(10.1.14.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 10.1.12.0/24, 1 successors, FD is 51200
via Redistributed (51200/0)
P 10.1.14.0/24, 1 successors, FD is 28160
via Connected, FastEthernet3/0
P 10.1.23.0/24, 1 successors, FD is 51200
via Redistributed (51200/0)
P 10.1.4.0/24, 1 successors, FD is 28416
via 10.1.14.4 (28416/2816), FastEthernet3/0
P 192.0.2.1/32, 1 successors, FD is 51200
via Redistributed (51200/0)
P 10.1.1.0/24, 1 successors, FD is 51200
via Redistributed (51200/0)
The show ip route command on Branch, as shown in Example 17-38, allows you to conclude that the problem is solved, because there are now external EIGRP routes learned by Branch and users can successfully connect to resources outside of the Branch office.
Example 17-38 Verifying Routes to Be Redistributed Are in the Branch Routing Table
Branch#show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is not set
10.0.0.0/8 is variably subnetted, 7 subnets, 2 masks
D EX 10.1.1.0/24 [170/614400] via 10.1.14.1, 00:02:58, FastEthernet1/0
C 10.1.4.0/24 is directly connected, GigabitEthernet0/0
L 10.1.4.4/32 is directly connected, GigabitEthernet0/0
D EX 10.1.12.0/24 [170/614400] via 10.1.14.1, 00:02:58, FastEthernet1/0
C 10.1.14.0/24 is directly connected, FastEthernet1/0
L 10.1.14.4/32 is directly connected, FastEthernet1/0
D EX 10.1.23.0/24 [170/614400] via 10.1.14.1, 00:02:58, FastEthernet1/0
192.0.2.0/32 is subnetted, 1 subnets
D EX 192.0.2.1 [170/614400] via 10.1.14.1, 00:02:58, FastEthernet1/0
Trouble Ticket 17-2
Problem: Users in the 10.1.23.0/24 network indicate that they are not able to access resources in the 10.1.4.0/24 network.
You begin troubleshooting by verifying the problem on R2. You issue a ping to 10.1.4.4 from 10.1.23.2, but it fails, as shown in Example 17-39. Because R2 is not able to ping the destination network, you confirm that the clients in 10.1.23.0/24 are not able to connect with resources in 10.1.4.0/24.
Example 17-39 Verifying the Problem from R2
R2#ping 10.1.4.4 source 10.1.23.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.4.4, timeout is 2 seconds:
Packet sent with a source address of 10.1.23.2
.....
Success rate is 0 percent (0/5)
On R2, you decide to issue a traceroute to help identify where the issue might be. The trace to 10.1.4.4 from 10.1.23.2, as shown in Example 17-40, is headed toward 203.0.113.2, which is out interface Gig2/0, as confirmed in the output of show ip interface brief in Example 17-41.
Example 17-40 Issuing a Trace to Identify Where the Issue Might Be
R2#traceroute 10.1.4.4 source 10.1.23.2
Type escape sequence to abort.
Tracing the route to 10.1.4.4
VRF info: (vrf in name/id, vrf out name/id)
1 203.0.113.2 28 msec 44 msec 32 msec
2 * * *
...output omitted...
Example 17-41 Verifying Interface IP Addresses
R2#show ip interface brief
Interface IP-Address OK? Method Status Protocol
Ethernet0/0 unassigned YES NVRAM administratively down down
GigabitEthernet0/0 10.1.12.2 YES NVRAM up up
GigabitEthernet1/0 10.1.23.2 YES NVRAM up up
GigabitEthernet2/0 203.0.113.1 YES NVRAM up up
Next you decide to issue the show ip route 10.1.4.4 command on R2, and the result, as shown in Example 17-42, is that the subnet is not in the table.
Example 17-42 Verifying the Route on R2
R2#show ip route 10.1.4.4
% Subnet not in table
You shift your attention over to R1 and issue the show ip route 10.1.4.4 command, as shown in Example 17-43, and the result indicates that 10.1.4.4 is reachable using EIGRP out interface Fast Ethernet 3/0. In addition, based on the topology, it should be redistributed into the OSPF process for the OSPF domain to have routes to it. Based on Example 17-43, it is being redistributed into OSPF process 1.
Example 17-43 Verifying the Route on R1
R1#show ip route 10.1.4.4
Routing entry for 10.1.4.0/24
Known via "eigrp 100", distance 90, metric 28416, type internal
Redistributing via eigrp 100, ospf 1
Last update from 10.1.14.4 on FastEthernet3/0, 2d14h ago
Routing Descriptor Blocks:
* 10.1.14.4, from 10.1.14.4, 2d14h ago, via FastEthernet3/0
Route metric is 28416, traffic share count is 1
Total delay is 110 microseconds, minimum bandwidth is 100000 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1
You double-check the OSPF database on R1, as shown in Example 17-44, and notice that 10.1.4.0 is not listed as an External Type 5 LSA. This means that it is not being successfully redistributed into the OSPF process.
Example 17-44 Verifying the Route on R1
R1#show ip ospf database
OSPF Router with ID (10.1.14.1) (Process ID 1)
Router Link States (Area 0)
Link ID ADV Router Age Seq# Checksum Link count
10.1.14.1 10.1.14.1 1698 0x8000007D 0x0064CD 2
203.0.113.1 203.0.113.1 1274 0x80000084 0x005972 2
Net Link States (Area 0)
Link ID ADV Router Age Seq# Checksum
10.1.12.2 203.0.113.1 1274 0x8000007C 0x0010FE
Type-5 AS External Link States
Link ID ADV Router Age Seq# Checksum Tag
192.0.2.1 203.0.113.1 1274 0x8000007C 0x00FD38 0
You issue the show run | section router ospf command on R1 to verify the OSPF configuration on R1. As shown in Example 17-45, the redistribute eigrp 100 command is listed in the configuration. However, as you discovered earlier, the EIGRP routes are not being redistributed. You double-check to make sure that the correct EIGRP autonomous system is being redistributed by issuing the show run | section router eigrp command, as shown in Example 17-46. This output confirms that the correct EIGRP autonomous system is being redistributed.
Example 17-45 Verifying OSPF Configuration on R1
R1#show run | section router ospf
router ospf 1
redistribute eigrp 100
network 10.1.1.1 0.0.0.0 area 0
network 10.1.12.1 0.0.0.0 area 0
ipv6 router ospf 1
redistribute eigrp 100 include-connected
Example 17-46 Verifying EIGRP Configuration on R1
R1#show run | section router eigrp
router eigrp 100
network 10.1.14.1 0.0.0.0
redistribute ospf 1 metric 100000 100 255 1 1500
ipv6 router eigrp 100
redistribute ospf 1 metric 100000 100 255 1 1500 include-connected
After some thought, you realize that the 10.1.4.0/24 network is a classless network and that the current redistribute eigrp 100 command will only redistribute classful networks. You need to add the subnets keyword to the redistribute command, as shown in Example 17-47, to redistribute classless networks. Issuing the show ip ospf database command in Example 17-48 confirms that the OSPF database is now learning the EIGRP route 10.1.4.0/24.
Example 17-47 Adding subnets Keyword to Redistribute Command
R1#config t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#router ospf 1
R1(config-router)#redistribute eigrp 100 subnets
Example 17-48 Verifying That the 10.1.4.0 Route Is in the OSPF Database on R1
R1#show ip ospf database
OSPF Router with ID (10.1.14.1) (Process ID 1)
Router Link States (Area 0)
Link ID ADV Router Age Seq# Checksum Link count
10.1.14.1 10.1.14.1 339 0x8000007E 0x0062CE 2
203.0.113.1 203.0.113.1 1923 0x80000084 0x005972 2
Net Link States (Area 0)
Link ID ADV Router Age Seq# Checksum
10.1.12.2 203.0.113.1 1923 0x8000007C 0x0010FE
Type-5 AS External Link States
Link ID ADV Router Age Seq# Checksum Tag
10.1.4.0 10.1.14.1 17 0x80000001 0x006215 0
10.1.14.0 10.1.14.1 17 0x80000001 0x00F379 0
192.0.2.1 203.0.113.1 1923 0x8000007C 0x00FD38 0
Next you visit R2 and issue the show ip route 10.1.4.4 command and confirm that it has been added, as shown in Example 17-49.
Example 17-49 Verifying That R2 Now Knows About the 10.1.4.0 Network
R2#show ip route 10.1.4.4
Routing entry for 10.1.4.0/24
Known via "ospf 1", distance 110, metric 20, type extern 2, forward metric 1
Redistributing via bgp 65500
Advertised by bgp 65500 match internal external 1 & 2
Last update from 10.1.12.1 on GigabitEthernet0/0, 00:04:52 ago
Routing Descriptor Blocks:
* 10.1.12.1, from 10.1.14.1, 00:04:52 ago, via GigabitEthernet0/0
Route metric is 20, traffic share count is 1
Finally, you confirm that the problem is solved with a ping from 10.1.23.2 to 10.1.4.4, and it is successful, as shown in Example 17-50.
Example 17-50 Successful Ping
R2#ping 10.1.4.4 source 10.1.23.2
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.4.4, timeout is 2 seconds:
Packet sent with a source address of 10.1.23.2
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 36/55/72 ms
Trouble Ticket 17-3
Problem: IPv6 users in the 2001:db8:0:4::/64 network report that they are not able to access resources in the 2001:db8:0:1::/64 network.
You begin troubleshooting by confirming the problem on Branch. As shown in Example 17-51, the ping from 2001:db8:0:4::4 to 2001:db8:0:1::1 fails.
Example 17-51 Confirming the Problem with a Ping
Branch#ping 2001:db8:0:1::1 source 2001:db8:0:4::4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2001:DB8:0:1::1, timeout is 2 seconds:
Packet sent with a source address of 2001:DB8:0:4::4
.....
Success rate is 0 percent (0/5)
While gathering further information, you decide to ping an IPv6 address in the 2001:db8:0:23::/64 network. As shown in Example 17-52, the ping is successful. Therefore, you conclude that only some of the routes in the IPv6 OSPF domain are being redistributed into the EIGRP for IPv6 domain. You issue the show ipv6 route command on Branch, as shown in Example 17-53, and the output confirms that only two external routes are being learned by Branch: 2001:db8:0:23::/64 and 2001:db8:f::/64.
Example 17-52 Gathering More Information with a Ping
Branch#ping 2001:db8:0:23::2 source 2001:db8:0:4::4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2001:DB8:0:23::2, timeout is 2 seconds:
Packet sent with a source address of 2001:DB8:0:4::4
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 8/47/120 ms
Example 17-53 Verifying Routes on Branch
Branch#show ipv6 route
...output omitted...
C 2001:DB8:0:4::/64 [0/0]
via GigabitEthernet0/0, directly connected
L 2001:DB8:0:4::4/128 [0/0]
via GigabitEthernet0/0, receive
C 2001:DB8:0:14::/64 [0/0]
via FastEthernet1/0, directly connected
L 2001:DB8:0:14::4/128 [0/0]
via FastEthernet1/0, receive
EX 2001:DB8:0:23::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
EX 2001:DB8:F::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
L FF00::/8 [0/0]
via Null0, receive
Based on the information you have gathered, you decide to check whether redistribution is being performed on R1. You issue the show ipv6 protocols command on R1, as shown in Example 17-54. In the output, you focus on the EIGRP section and review the redistribution information. It clearly indicates that redistribution from OSPF process 1 into EIGRP autonomous system 100 is occurring. In addition, the metric values have been applied, which are mandatory for EIGRP, and internal and external routes are being redistributed. You think that a route map might be applied that is controlling the routes that are being redistributed. However, you notice that a route map is not listed under the Redistribution section of the show ipv6 protocols command. Therefore, that is not the issue.
Example 17-54 Verifying IPv6 Redistribution on R1
R1#show ipv6 protocols
IPv6 Routing Protocol is "connected"
IPv6 Routing Protocol is "ND"
IPv6 Routing Protocol is "eigrp 100"
EIGRP-IPv6 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
NSF-aware route hold timer is 240
Router-ID: 10.1.14.1
Topology : 0 (base)
Active Timer: 3 min
Distance: internal 90 external 170
Maximum path: 16
Maximum hopcount 100
Maximum metric variance 1
Interfaces:
FastEthernet3/0
Redistribution:
Redistributing protocol ospf 1 with metric 100000 100 255 1 1500 (internal,
external 1 & 2, nssa-external 1 & 2)
IPv6 Routing Protocol is "ospf 1"
Router ID 10.1.14.1
Autonomous system boundary router
Number of areas: 1 normal, 0 stub, 0 nssa
Interfaces (Area 0):
GigabitEthernet1/0
GigabitEthernet0/0
Redistribution:
Redistributing protocol eigrp 100 include-connected
On R1, you issue the show ipv6 eigrp topology command to confirm whether the routes are being redistributed into EIGRP from OSPF. As shown in Example 17-55, only the routes 2001:db8:0:1::/64 and 2001:db8:f::/64 are being redistributed.
Example 17-55 Reviewing R1’s EIGRP Topology
R1#show ipv6 eigrp topology
EIGRP-IPv6 Topology Table for AS(100)/ID(10.1.14.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 2001:DB8:0:4::/64, 1 successors, FD is 28416
via FE80::C800:CFF:FEE4:1C (28416/2816), FastEthernet3/0
P 2001:DB8:F::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
P 2001:DB8:0:14::/64, 1 successors, FD is 28160
via Connected, FastEthernet3/0
P 2001:DB8:0:23::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
You check the output of show ipv6 route on R1 and note that 2001:db8:0:1::/64 and 2001:db8:0:12::/64 are both in R1’s routing table as connected routes, as shown in Example 17-56. Therefore, for them to be redistributed, they either have to be redistributed as connected routes or participating in the OSPF process, because R1 is configured to redistribute OSPF into EIGRP. Therefore, on R1, you issue the show ipv6 ospf interface command, as shown in Example 17-57, and confirm that both Gig0/0 and Gig1/0 are participating in the OSPF process. However, based on your information gathering so far, you have determined that the routes are still not being redistributed.
Example 17-56 Reviewing R1’s IPv6 Routing Table
R1#show ipv6 route
...output omitted...
C 2001:DB8:0:1::/64 [0/0]
via GigabitEthernet0/0, directly connected
L 2001:DB8:0:1::1/128 [0/0]
via GigabitEthernet0/0, receive
D 2001:DB8:0:4::/64 [90/28416]
via FE80::C800:CFF:FEE4:1C, FastEthernet3/0
C 2001:DB8:0:12::/64 [0/0]
via GigabitEthernet1/0, directly connected
L 2001:DB8:0:12::1/128 [0/0]
via GigabitEthernet1/0, receive
C 2001:DB8:0:14::/64 [0/0]
via FastEthernet3/0, directly connected
L 2001:DB8:0:14::1/128 [0/0]
via FastEthernet3/0, receive
O 2001:DB8:0:23::/64 [110/2]
via FE80::C802:AFF:FE88:8, GigabitEthernet1/0
OE2 2001:DB8:F::/64 [110/1]
via FE80::C802:AFF:FE88:8, GigabitEthernet1/0
L FF00::/8 [0/0]
via Null0, receive
Example 17-57 Reviewing R1’s IPv6 OSPF Interfaces
R1#show ipv6 ospf interface brief
Interface PID Area Intf ID Cost State Nbrs F/C
Gi1/0 1 0 4 1 BDR 1/1
Gi0/0 1 0 3 1 DR 0/0
At this point, you recall that IPv6 redistribution behaves differently than IPv4 redistribution with directly connected networks. IPv6 directly connected networks are not redistributed by default. You need to use the include-connected keyword to force the directly connected networks to be redistributed. Reviewing the Redistribution section in the show ipv6 protocols output of Example 17-54 again confirms that the include-connected keyword was not included in the command.
On R1, you issue the command redistribute ospf 1 metric 100000 100 255 1 1500 include-connected in IPv6 EIGRP configuration mode, as shown in Example 17-58, to fix the issue.
Example 17-58 Modifying the redistribute Command
R1#config t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#ipv6 router eigrp 100
R1(config-rtr)#redistribute ospf 1 metric 100000 100 255 1 1500 include-connected
You reissue the show ipv6 protocols command and the show ipv6 eigrp topology command and confirm that the directly connected routes are now being redistributed, as shown in Example 17-59.
Example 17-59 Verifying That Routes Are Redistributed After Changes
R1#show ipv6 protocols
IPv6 Routing Protocol is "connected"
IPv6 Routing Protocol is "ND"
IPv6 Routing Protocol is "eigrp 100"
EIGRP-IPv6 Protocol for AS(100)
Metric weight K1=1, K2=0, K3=1, K4=0, K5=0
...output omitted...
Redistribution:
Redistributing protocol ospf 1 with metric 100000 100 255 1 1500 (internal,
external 1 & 2, nssa-external 1 & 2) include-connected
...output omitted...
R1#show ipv6 eigrp topology
EIGRP-IPv6 Topology Table for AS(100)/ID(10.1.14.1)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 2001:DB8:0:4::/64, 1 successors, FD is 28416
via FE80::C800:CFF:FEE4:1C (28416/2816), FastEthernet3/0
P 2001:DB8:0:1::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
P 2001:DB8:F::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
P 2001:DB8:0:14::/64, 1 successors, FD is 28160
via Connected, FastEthernet3/0
P 2001:DB8:0:12::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
P 2001:DB8:0:23::/64, 1 successors, FD is 51200
via Redistributed (51200/0)
Going back to Branch, you issue the show ipv6 route command and notice that there is an entry in the routing table for 2001:db8:0:1::/64 and 2001:db8:0:12::/64 now, as shown in Example 17-60.
Example 17-60 Verifying That Routes Are Learned By Branch
Branch#show ipv6 route
IPv6 Routing Table - default - 9 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, H - NHRP, I1 - ISIS L1
I2 - ISIS L2, IA - ISIS interarea, IS - ISIS summary, D - EIGRP
EX - EIGRP external, ND - ND Default, NDp - ND Prefix, DCE - Destination
NDr - Redirect, O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF ext 1
OE2 - OSPF ext 2, ON1 - OSPF NSSA ext 1, ON2 - OSPF NSSA ext 2, l - LISP
EX 2001:DB8:0:1::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
C 2001:DB8:0:4::/64 [0/0]
via GigabitEthernet0/0, directly connected
L 2001:DB8:0:4::4/128 [0/0]
via GigabitEthernet0/0, receive
EX 2001:DB8:0:12::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
C 2001:DB8:0:14::/64 [0/0]
via FastEthernet1/0, directly connected
L 2001:DB8:0:14::4/128 [0/0]
via FastEthernet1/0, receive
EX 2001:DB8:0:23::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
EX 2001:DB8:F::/64 [170/614400]
via FE80::C801:AFF:FE88:54, FastEthernet1/0
L FF00::/8 [0/0]
via Null0, receive
You verify that the problem is solved with a ping from Branch at 2001:db8:0:4::4 to 2001:db8:0:1::1, as shown in Example 17-61. The ping is successful, and the problem is solved.
Example 17-61 Verifying That the Problem Is Solved with a Successful Ping
Branch#ping 2001:db8:0:1::1 source 2001:db8:0:4::4
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2001:DB8:0:1::1, timeout is 2 seconds:
Packet sent with a source address of 2001:DB8:0:4::4
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 24/32/44 ms
Trouble Ticket 17-4
Problem: A junior administrator has approached you asking for help. He claims that users in BGP autonomous system 65500 are unable to access IPv4 resources in the EIGRP for IPv4 autonomous system 100. However, they can access resources in the OSPFv2 domain. Because you do not have access to any routers in BGP autonomous system 65500 (except for R2), he has asked you for help because he does not know what to do.
You start by reviewing Figure 17-4 to confirm which local router is running BGP. It is R2. You issue the show bgp ipv4 unicast summary command on R2 to confirm whether R2 has any BGP neighbors. As shown in Example 17-62, 203.0.113.2 is listed as a neighbor, and because the State/PfxRcd column has a number, it is an established neighborship. To further confirm, you issue the show bgp ipv4 unicast neighbors | include BGP command, as shown in Example 17-63, and the output indicates that 203.0.113.2 is an established neighbor.
Example 17-62 Verifying BGP Neighbors
R2#show bgp ipv4 unicast summary
BGP router identifier 203.0.113.1, local AS number 65500
BGP table version is 33, main routing table version 33
4 network entries using 576 bytes of memory
4 path entries using 320 bytes of memory
3/3 BGP path/bestpath attribute entries using 408 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP using 1304 total bytes of memory
BGP activity 28/18 prefixes, 30/20 paths, scan interval 60 secs
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
203.0.113.2 4 65500 496 500 33 0 0 07:26:42 1
Example 17-63 Verifying Established BGP Neighbor
R2#show bgp ipv4 unicast neighbors | include BGP
BGP neighbor is 203.0.113.2, remote AS 65500, internal link
BGP version 4, remote router ID 192.0.2.1
BGP state = Established, up for 07:31:19
BGP table version 33, neighbor version 33/0
Last reset 07:31:29, due to BGP Notification received of session 1, header syn-
chronization problems
Next you verify whether any routes are being advertised to the neighbor at 203.0.113.2 by issuing the show bgp ipv4 unicast neighbors 203.0.113.2 advertised-routes command. In Example 17-64, you can see that three routes are being advertised to 203.0.113.2 from R2. The routes are 10.1.1.0/24, 10.1.12.0/24, and 10.1.23.0/24. Figure 17-4 indicates that the EIGRP networks are 10.1.14.0/24 and 10.1.4.0/24 and that they are not listed as routes being advertised.
Example 17-64 Verifying Advertised BGP Routes
R2#show bgp ipv4 unicast neighbors 203.0.113.2 advertised-routes
BGP table version is 33, local router ID is 203.0.113.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*> 10.1.1.0/24 10.1.12.1 2 32768 ?
*> 10.1.12.0/24 0.0.0.0 0 32768 ?
*> 10.1.23.0/24 0.0.0.0 0 32768 ?
Total number of prefixes 3
You issue the show ip protocols command on R2, as shown in Example 17-65, to verify the BGP configuration. You notice that there are no filters, no distribute lists, or no route maps applied to neighbor 203.0.113.2 that could be preventing routes from being advertised. However, you notice that only OSPF internal routes are being redistributed in the output. You issue the show ip route command on R2, as shown in Example 17-66, and confirm that 10.1.4.0/24 and 10.1.14.0/24 are both external OSPF routes. You conclude that the problem is related to BGP not redistributing OSPF external routes.
Example 17-65 Verifying BGP Configuration with show ip protocols
R2#show ip protocols
*** IP Routing is NSF aware ***
...output omitted...
Routing Protocol is "bgp 65500"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
IGP synchronization is disabled
Automatic route summarization is disabled
Redistributing: ospf 1 (internal)
Neighbor(s):
Address FiltIn FiltOut DistIn DistOut Weight RouteMap
203.0.113.2
Maximum path: 1
Routing Information Sources:
Gateway Distance Last Update
203.0.113.2 200 07:54:48
Distance: external 20 internal 200 local 200
Example 17-66 Verifying IPv4 Routes on R2
R2#show ip route
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
+ - replicated route, % - next hop override
Gateway of last resort is 203.0.113.2 to network 0.0.0.0
S* 0.0.0.0/0 [1/0] via 203.0.113.2
10.0.0.0/8 is variably subnetted, 7 subnets, 2 masks
O 10.1.1.0/24 [110/2] via 10.1.12.1, 4d20h, GigabitEthernet0/0
O E2 10.1.4.0/24 [110/20] via 10.1.12.1, 1d23h, GigabitEthernet0/0
C 10.1.12.0/24 is directly connected, GigabitEthernet0/0
L 10.1.12.2/32 is directly connected, GigabitEthernet0/0
O E2 10.1.14.0/24 [110/20] via 10.1.12.1, 1d23h, GigabitEthernet0/0
C 10.1.23.0/24 is directly connected, GigabitEthernet1/0
L 10.1.23.2/32 is directly connected, GigabitEthernet1/0
192.0.2.0/32 is subnetted, 1 subnets
B 192.0.2.1 [200/0] via 203.0.113.2, 08:00:48
203.0.113.0/24 is variably subnetted, 2 subnets, 2 masks
C 203.0.113.0/29 is directly connected, GigabitEthernet2/0
L 203.0.113.1/32 is directly connected, GigabitEthernet2/0
On R2, you issue the show run | section router bgp command, as shown in Example 17-67, to verify the BGP configuration. Under the IPv4 address family, you notice that the redistribute ospf 1 command has been issued. However, that only redistributes internal OSPF routes. It does not redistribute OSPF external routes by default.
Example 17-67 Verifying IPv4 Routes on R2
R2#show run | section router bgp
router bgp 65500
bgp log-neighbor-changes
neighbor 2001:DB8:0:A::A remote-as 65500
neighbor 203.0.113.2 remote-as 65500
!
address-family ipv4
bgp redistribute-internal
redistribute ospf 1
no neighbor 2001:DB8:0:A::A activate
neighbor 203.0.113.2 activate
exit-address-family
!
address-family ipv6
redistribute ospf 1 match internal external 1 external 2 include-connected
bgp redistribute-internal
neighbor 2001:DB8:0:A::A activate
exit-address-family
Because the routes are external Type 2 OSPF routes, you issue the command redistribute ospf 1 match internal external 2 in IPv4 BGP address family configuration mode, as shown in Example 17-68. You then issue the command show ip protocols to verify that external Type 2 routes are now being redistributed as well. As shown in Example 17-69, they are.
Example 17-68 Modifying the redistribute Command in IPv4 Address Family Config Mode
R2#config t
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#router bgp 65500
R2(config-router)#address-family ipv4 unicast
R2(config-router-af)#redistribute ospf 1 match internal external 2
Example 17-69 Verifying Types of OSPF Routes Being Advertised into BGP
R2#show ip protocols
...output omitted...
Routing Protocol is "bgp 65500"
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
IGP synchronization is disabled
Automatic route summarization is disabled
Redistributing: ospf 1 (internal, external 2)
Neighbor(s):
Address FiltIn FiltOut DistIn DistOut Weight RouteMap
203.0.113.2
Maximum path: 1
Routing Information Sources:
Gateway Distance Last Update
203.0.113.2 200 1d07h
Distance: external 20 internal 200 local 200
You then reissue the show bgp ipv4 unicast neighbors 203.0.113.2 advertised-routes command to verify that 10.1.14.0/24 and 10.1.4.0/24 are being advertised in BGP autonomous system 65500. As shown in Example 17-70, they are.
Example 17-70 Verifying OSPF Routes Are Advertised to BGP Neighbor
R2#show bgp ipv4 unicast neighbors 203.0.113.2 advertised-routes
BGP table version is 35, local router ID is 203.0.113.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found
Network Next Hop Metric LocPrf Weight Path
*> 10.1.1.0/24 10.1.12.1 2 32768 ?
*> 10.1.4.0/24 10.1.12.1 20 32768 ?
*> 10.1.12.0/24 0.0.0.0 0 32768 ?
*> 10.1.14.0/24 10.1.12.1 20 32768 ?
*> 10.1.23.0/24 0.0.0.0 0 32768 ?
Total number of prefixes 5
Next you pick up the phone and call the administrator of the other routers in BGP autonomous system 65500 and confirm that they can access the resources in EIGRP autonomous system 100. They state that they can; therefore, you have solved the issue.
Troubleshooting Advanced Redistribution Issues
When route redistribution is misconfigured, it can lead to issues such as routing loops and suboptimal routing. Suboptimal routing can lead to users experiencing slow connectivity, and routing loops can lead to no connectivity. This section explains how you can recognize these issues and the options you have to fix them.
Troubleshooting Suboptimal Routing Caused by Redistribution
When redistributing routes from one routing source into another routing source, the original routing source’s information is lost when the seed metric is injected at the redistribution point. Therefore, overall network visibility is lost or hidden from the destination routing source. This is not an issue when there is only one point of redistribution between two sources. However, if there are multiple points of redistribution between two sources, as shown in Figure 17-5, the suboptimal path may be chosen to reach routes.
Figure 17-5 Suboptimal Routing Topology
From R1 and R2, the optimal path to reach 192.168.2.0/24 is from R2 because the 1-Gbps link is much faster than the 10-Mbps link. When you perform redistribution on R1 and R2 into EIGRP, EIGRP does not know that the 10-Mbps or the 1-Gbps link exists in the OSPF domain. Therefore, if an inappropriate seed metric is used during redistribution on R1 and R2, the traffic from 10.1.1.0/24 destined for 192.168.2.0/24 may take the suboptimal path through R1. However, realize, according to the EIGRP AS, it is the best path because all it sees is the seed metric and the 1-Gbps and 100-Mbps link in the EIGRP autonomous system. Therefore, if the seed metrics you define are the same on R1 and R2 when you redistribute into EIGRP, the 1-Gbps link in the EIGRP autonomous system is preferred, and traffic goes to R1. Then R1 sends it across the 10-Mbps link to 192.168.2.0/24, which is suboptimal. It works, but it is suboptimal.
You can recognize this issue from a topological diagram in addition to using the traceroute command. In Figure 17-5, if the result of the traceroute from 10.1.1.0/24 to 192.168.2.0/24 goes through R1, suboptimal routing is occurring because of redistribution.
You can solve this issue by providing different seed metrics on the boundary routers (R1 and R2 in this case) that will ensure a certain path is preferred because it has a lower overall metric. So, R2’s EIGRP seed metric would have to be significantly lower than R1’s EIGRP seed metric to ensure that R3 chooses the path through R2 even though it is a slower link between R3 and R2 than R3 and R1. The key is to make sure that the traffic avoids the 10-Mbps link.
Going in reverse, when redistributing from EIGRP into OSPF, the redistributed routes will have a default seed metric of 20 and be classified as E2 routes; therefore, the metric will remain as 20 throughout the OSPF domain. At first, you might think that load balancing will occur from R4 to R1 and R2 when sending traffic from 192.168.2.0/24 to 10.1.1.0/24. You would be correct only if the metrics (forward metric) to reach the ASBRs are equal as well as the E2 seed metric. In this case, the forward metrics are not equal. The 10-Mbps link has a much higher cost than the 1-Gbps link. Therefore, all the traffic from 192.168.2.0/24 to 10.1.1.0/24 will go through R2 across the 1-Gbps link (lower metric to reach ASBR) in the OSPF domain. However, if the seed metric was set higher than 20 on R2 and left at 20 on R1, R1 will be used as the path because it now has the lower seed metric, but in this case it would be the suboptimal path. Therefore, if the metric type is E2, you can simply make the preferred ASBR advertise the lowest seed metric to ensure that optimal routing is achieved. If you are using a metric type of E1, the cost of the links within the network are added to the seed metric to come up with the overall cost to reach the destination network. Therefore, if suboptimal routing is occurring, you need to determine which seed metrics are most appropriate with E2 to ensure the optimal path is chosen, or use a metric type of E1 so that internal costs are used with the seed metric to determine the overall cost.
When troubleshooting suboptimal routing caused by redistribution, keep the following in mind:
Based on the topology, be able to recognize that mutual redistribution is occurring at multiple points in the network.
Based on the connections, be able to recognize the different speeds of the links.
Based on the routing protocols in use, be able to identify how the seed metric is determined and how it behaves for the different protocols.
Based on the business requirements, know how to fix the suboptimal routing by manipulating the metrics on the boundary routers with the default-metric command, the metric parameter in the redistribute command, or within a route map.
Troubleshooting Routing Loops Caused by Redistribution
Examine Figure 17-6. The 10.1.1.0/24 network is redistributed into the EIGRP autonomous system, and then it is redistributed into the OSPF domain on R1 and R2. This does not appear to be an issue; however, it is because of AD. Let’s explore what happens.
Figure 17-6 Routing Loop Routing Topology
When the 10.1.1.0/24 network is redistributed from RIPv2 into EIGRP autonomous system 100, it is classified as an external route in the EIGRP autonomous system. R1 and R2 place the route in the routing table with the code D EX and an AD of 170, as shown in Figure 17-7.
Figure 17-7 Redistributing the RIPv2 Route into the EIGRP Autonomous System
When R1 and R2 redistribute the 10.1.1.0/24 network in the OSPF domain, by default, the Type 5 LSA is advertising 10.1.1.0/24 as an O E2 route, with an AD of 110, as shown in Figure 17-8. Do not forget that it is flooded through the area. Therefore, R1 will receive R2’s LSA and R2 will receive R1’s LSA, which creates the problem. Look closely at R1’s two entries for 10.1.1.0/24. Which one will be preferred? The OSPF route because it has a lower AD. Therefore, R1 points to R2 to reach 10.1.1.0/24. Look closely at R2’s two entries for 10.1.1.0/24. Which one will be preferred? The OSPF route because it has a lower AD. Therefore, R2 points to R1 to reach 10.1.1.0/24.
Figure 17-8 Redistributing the RIPv2 Route into the OSPF Domain on R1 and R2
Now when traffic is sent from 192.168.2.0/24 to 10.1.1.0/24, it will bounce back and forth between R1 and R2, which is classified as a routing loop.
However, this scenario gets worse because of how redistribution works. Remember that to redistribute a route from one routing source to another (EIGRP into OSPF), that route must be in the routing table as an entry for the routing source that you are redistributing the route from.
With that in mind, consider Figure 17-8 again. When R1 and R2 originally learned about the network 10.1.1.0/24 from R3, it was an EIGRP external route. There was no other source of information in the routing table at the time for 10.1.1.0/24; therefore, it was considered the best source and installed in the routing table as an EIGRP route. Because redistribution is occurring from EIGRP into OSPF, the 10.1.1.0/24 network is redistributed from the routing table into the OSPF process and advertised. Now, when R1 and R2 learn about the OSPF 10.1.1.0/24 route from each other, they notice that it is a better source of information because the AD is lower (110) than the one for EIGRP (170) currently in the routing table. Therefore, the OSPF route replaces the EIGRP route. What happens now? Well, the EIGRP route is no longer in the routing table on R1 and R2. It is still in the EIGRP topology table, but not in the routing table. Therefore, the 10.1.1.0/24 network is no longer available for redistribution into OSPF, and therefore, there are no more Type 5 LSAs to advertise. As a result of this, R1 and R2 have to notify the routers in the OSPF domain that 10.1.1.0/24 no longer exists. When this happens, R1 and R2 no longer have the 10.1.1.0/24 network that they learned via OSPF from each other in the routing table. What does this cause? The EIGRP external route 10.1.1.0/24 is reinstalled in the routing table, and because redistribution from EIGRP into OSPF is occurring, the issue repeats all over again. As you can see, the routing table is not stable, because routes are inserted then removed and inserted and removed over and over again. You can see this happening with the debug ip routing command, which displays changes as they occur to the routing table.
Let’s take this even further, examine Figure 17-9, which shows the 10.1.1.0/24 network being redistributed back into the EIGRP autonomous system when the OSPF route is in the routing table on R1 and R2. Now R3 thinks that 10.1.1.0/24 is reachable via the boundary router between the RIPv2 domain and the EIGRP autonomous system, as well as R1 and R2. So now, additional CPU cycles are being used in addition to memory.
Figure 17-9 Redistributing the RIPv2 Route Back into the EIGRP Autonomous System from OSPF
This is definitely a bad situation to be in. It is recognized through the analysis of a diagram. Notice how we could identify this problem without using any show commands. In addition, the symptoms are wide ranging. For example, a user might have a connection from 192.168.2.0/24 to 10.1.1.0/24 for one moment and then the connection is lost, then it is back, then lost, all because the routes are being added and removed over and over again, causing a loop, and then no loop, and so on. Therefore, you need to be able to look at the topology and identify where this type of issue might occur and implement the necessary measures to stop it from happening. Or, if it is happening, identify why it is happening and propose how to fix it.
Remember that this issue was caused by AD; 110 is better than 170. Therefore, you need to either lower the AD of the EIGRP routes on R1 and R2 for 10.1.1.0/24 or increase the AD of the OSPF learned routes on R1 and R2 for 10.1.1.0/24. Your goal is to make sure that the EIGRP learned route is the preferred route. Regardless of what you choose to do, you need to use the distance command on R1 and R2 and specify what the AD will be for the 10.1.1.0/24 network. Because you only want to affect the 10.1.1.0/24 network in this example, you could use an ACL and attach it to the distance command to single out the 10.1.1.0/24 network. If you lower the EIGRP AD, it will need to be 109 or lower, and if you decide to increase the OSPF AD, it will need to be 171 or higher.
There is another way to solve this issue. You could attach a distribute list to the OSPF process on R1 and R2. When a distribute list is used with OSPF, it can control what routes are installed in the routing table from the OSPF database. Therefore, if you deny the 10.1.1.0/24 route in the OSPF database from being installed in the routing table with a distribute list, the EIGRP route will be installed in the routing table instead.
And finally, you do not want the routes that are redistributed from EIGRP into OSPF to be redistributed back into the EIGRP autonomous system. This can cause routing issues such as loops, which prevent packets from being correctly delivered to their destination (in addition to wasting CPU and memory resources on various devices in the network). The most robust way to deal with this is route tags. Figure 17-10 shows how R1 and R2 can add a tag (which is just an arbitrary value that can be used to identify the route) when the route is redistributed. This is accomplished with route maps. In this example, when R1 redistributes the 10.1.1.0/24 route into the OSPF domain, it adds a tag of 10. When R2 redistributes the 10.1.1.0/24 route into the OSPF domain, it adds a tag of 20.
Figure 17-10 Adding Tags to Routes During Redistribution
Example 17-71 displays the commands that you could use to tag the 10.1.1.0/24 routes as they are redistributed on R1 and R2. First you have to define the routes you want to tag with an ACL or prefix list. Then you create a route map that will have a sequence that matches the ACL or prefix list created, which will then set the desired tag upon a match. In this case, R1 sets a tag of 10, and R2 sets a tag of 20. Do not forget about all the other routes you want to redistribute without a tag. That is what sequence 20 is for in the route map. If you forget it, all other routes are denied and not redistributed. You then attach the route map to the redistribution command.
Example 17-71 Tagging Routes as They Are Being Redistributed
R1#
ip prefix-list TAG_10.1.1.0/24 seq 5 permit 10.1.1.0/24
!
route-map REDIS_EIGRP_TO_OSPF permit 10
match ip address prefix-list TAG_10.1.1.0/24
set tag 10
route-map REDIS_EIGRP_TO_OSPF permit 20
!
router ospf 1
redistribute eigrp 100 subnets route-map REDIS_EIGRP_TO_OSPF
R2#
ip prefix-list TAG_10.1.1.0/24 seq 5 permit 10.1.1.0/24
!
route-map REDIS_EIGRP_TO_OSPF permit 10
match ip address prefix-list TAG_10.1.1.0/24
set tag 20
route-map REDIS_EIGRP_TO_OSPF permit 20
!
router ospf 1
redistribute eigrp 100 subnets route-map REDIS_EIGRP_TO_OSPF
You are not done yet. To prevent R1 and R2 from redistributing the OSPF-learned 10.1.1.0/24 routes with their tags back into EIGRP, you deny the routes based on their tags. As shown in Figure 17-11, on R1 you deny the routes with a tag of 20 from being redistributed into the EIGRP autonomous system, and on R2 you deny the routes with a tag of 10 from being redistributed into the EIGRP autonomous system.
Figure 17-11 Deny Routes with Certain Tags During Redistribution
Example 17-72 displays the commands that would be used to ensure that R1 and R2 do not redistribute the 10.1.1.0/24 networks back into the EIGRP autonomous system. Notice the very first sequence in this route map. In this case, it is deny, and when deny is used with redistribution, it indicates that whatever matches will not be redistributed. Therefore, R1 will not redistribute from OSPF into EIGRP any routes that have a tag of 20, as shown in sequence 10, and sequence 20 allows all other routes to be redistributed. For R2, it will not redistribute any routes with a tag of 10 from OSPF into EIGRP based on sequence 10, and all other routes will be redistributed based on sequence 20.
Example 17-72 Using Route Tags to Prevent Routes from Being Reinjected
R1#
route-map REDIS_OSPF_INTO_EIGRP deny 10
match tag 20
route-map REDIS_OSPF_INTO_EIGRP permit 20
!
router eigrp 100
redistribute ospf 1 metric 100000 100 255 1 1500 route-map REDIS_OSPF_INTO_EIGRP
R2#
route-map REDIS_OSPF_INTO_EIGRP deny 10
match tag 10
route-map REDIS_OSPF_INTO_EIGRP permit 20
!
router eigrp 100
redistribute ospf 1 metric 100000 100 255 1 1500 route-map REDIS_OSPF_INTO_EIGRP
So, to wrap up our coverage on advanced redistribution scenarios, keep these points in mind:
Internal prefix information should always be preferred over external prefix information.
Prefixes should never be redistributed back into a routing domain that they were originally redistributed from.
A topological diagram is mandatory if you expect to solve the issues quickly and efficiently.
Exam Preparation Tasks
As mentioned in the section “How to Use This Book” in the Introduction, you have a couple of choices for exam preparation: the exercises here; Chapter 22, “Final Preparation;” and the exam simulation questions on the CD-ROM.
Review All Key Topics
Review the most important topics in this chapter, noted with the Key Topic icon in the outer margin of the page. Table 17-3 lists a reference of these key topics and the page numbers on which each is found.
Table 17-3 Key Topics for Chapter 17
Define Key Terms
Define the following key terms from this chapter and check your answers in the glossary:
redistribution
boundary router
metric
seed metric
subnets keyword
Type 5 LSA
ASBR
routing loop
single-point redistribution
multipoint redistribution
route tag
administrative distance
Command Reference to Check Your Memory
This section includes the most important show commands covered in this chapter. It might not be necessary to memorize the complete syntax of every command, but you should be able to remember the basic keywords that are needed.
To test your memory of the commands, cover the right side of Table 17-4 with a piece of paper, read the description on the left side, and then see how much of the command you can remember.
Table 17-4 show commands
The 300-135 TSHOOT exam focuses on practical, hands-on skills that are used by a networking professional. Therefore, you should be able to identify the commands needed to successfully troubleshoot the topics and concepts covered in this chapter.