Hi Naikumar

I appreciate your swift response, thanks a million. However, s 0/0 is actually a typographical error, i meant to type fa 0/0. The config is correct in the router. BGP section from PE1 to PE2 is up and running. Also, LSP pings are successful.

I just noticed that when i telnet into PE1 router, i cannot reach ER1, same problem applies to the other extreme(from PE2 i cannot ping ER2). But on ER1 and ER2 i can reach the 10. interfaces of PE1 and PE2 but not the 192.

Hello,

Config look good except few changes

> Remove below line from PE's, No need to advt. loopback ip. It is already available at other end via. IGP (RIPv2 in your case)

        network 192.168.1.1 mask 255.255.255.255 >>> loopback announced for BGP

But above one is not causing any problem

Try below if you want to reach from work statin to another station

Announce IP Phone IP's in PE's

  PE2: ip route vrf VPN_A 10.4.1.0 255.255.255.0 fa 0/1 10.4.0.1
  PE1: ip route vrf VPN_A 10.1.1.0 255.255.255.0 fa 0/1 10.1.0.1

Please let me know if not yet working

Regards

Mahesh

Thanks Mahesh Gohil

I will try this out soon as i get to the lab tomorrow and get back to you. I just feel i should also add that when i use the command "show ip route" on PE1 and PE2 Routers, i dont see the 10. network in the list of networks directly connected or connected thru Routing protocols.

However, i will let u know how ur advise play out

Regards

Ken

Hi Guys

I have done exactly all you asked me to do but the problem is yet unresolved. I think the basci problem is that PE1 and PE2 routers do not have the 10. routes on their routing table. Find results of test below. Please study and get back to me

PE1#show ip bgp vpnv4 all summary
BGP router identifier 192.168.1.1, local AS number 1
BGP table version is 17, main routing table version 17
4 network entries and 4 paths using 740 bytes of memory
4 BGP path attribute entries using 240 bytes of memory
1 BGP extended community entries using 24 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP activity 8/2 prefixes, 8/2 paths, scan interval 15 secs

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
192.168.1.2     4     1    5174    5176       17    0    0 3d14h           2
PE1#

PE1#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

Gateway of last resort is not set

     192.168.1.0/24 is variably subnetted, 10 subnets, 2 masks
C       192.168.1.8/30 is directly connected, FastEthernet0/1
R       192.168.1.12/30 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
C       192.168.1.1/32 is directly connected, Loopback0
R       192.168.1.3/32 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.2/32 [120/3] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.5/32 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.4/32 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.24/30 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.16/30 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.20/30 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1

PE1#ping 10.4.0.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.4.0.2, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)

PE1#sh run
Building configuration...

Current configuration : 1660 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname PE1
!
enable password cisco
!
ip subnet-zero
!
!
!
ip vrf VPN_A
rd 1:1
route-target export 1:1
route-target import 1:1
!
ip cef
mpls label protocol ldp
tag-switching tdp router-id Loopback0 force
!
!
!
!
!
!
!
!
!
!
!
mta receive maximum-recipients 0
!
!
!
!
interface Loopback0
ip address 192.168.1.1 255.255.255.255
!
interface FastEthernet0/0
description connection_to_ER1
ip vrf forwarding VPN_A
ip address 10.1.0.2 255.255.255.0
speed 100
full-duplex
!
interface FastEthernet0/1
description connection_to_P2
ip address 192.168.1.9 255.255.255.252
speed 100
full-duplex
tag-switching ip
!
interface ATM2/0
no ip address
shutdown
no atm ilmi-keepalive
!
router rip
version 2
network 192.168.1.0
!
router bgp 1
no synchronization
bgp log-neighbor-changes
network 192.168.1.1 mask 255.255.255.255
redistribute static
neighbor 192.168.1.2 remote-as 1
neighbor 192.168.1.2 update-source Loopback0
no auto-summary
!
address-family ipv4 vrf VPN_A
redistribute connected
redistribute static
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 192.168.1.2 activate
neighbor 192.168.1.2 send-community both
no auto-summary
exit-address-family
!
ip classless
ip route vrf VPN_A 10.1.1.0 255.255.255.0 FastEthernet0/1 10.1.0.1
ip route vrf VPN_A 10.1.4.1 255.255.255.255 FastEthernet0/1 10.1.0.1
ip http server
!
!
!
!
!
call rsvp-sync
!

PE1#ip route
     ^
% Invalid input detected at '^' marker.

PE1#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

Gateway of last resort is not set

     192.168.1.0/24 is variably subnetted, 10 subnets, 2 masks
C       192.168.1.8/30 is directly connected, FastEthernet0/1
R       192.168.1.12/30 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
C       192.168.1.1/32 is directly connected, Loopback0
R       192.168.1.3/32 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.2/32 [120/3] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.5/32 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.4/32 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.24/30 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.16/30 [120/1] via 192.168.1.10, 00:00:23, FastEthernet0/1
R       192.168.1.20/30 [120/2] via 192.168.1.10, 00:00:23, FastEthernet0/1
PE1#copy run start
Destination filename [startup-config]?
Building configuration...
[OK]
PE1#show ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

Gateway of last resort is not set

     192.168.1.0/24 is variably subnetted, 10 subnets, 2 masks
C       192.168.1.8/30 is directly connected, FastEthernet0/1
R       192.168.1.12/30 [120/1] via 192.168.1.10, 00:00:11, FastEthernet0/1
C       192.168.1.1/32 is directly connected, Loopback0
R       192.168.1.3/32 [120/2] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.2/32 [120/3] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.5/32 [120/2] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.4/32 [120/1] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.24/30 [120/2] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.16/30 [120/1] via 192.168.1.10, 00:00:11, FastEthernet0/1
R       192.168.1.20/30 [120/2] via 192.168.1.10, 00:00:11, FastEthernet0/1
PE1#ping 192.168.1.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms
PE1#ping 10.4.0.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.4.0.2, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
PE1#sh run
Building configuration...

Current configuration : 1660 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname PE1
!
enable password cisco
!
ip subnet-zero
!
!
!
ip vrf VPN_A
rd 1:1
route-target export 1:1
route-target import 1:1
!
ip cef
mpls label protocol ldp
tag-switching tdp router-id Loopback0 force
!
!
!
!
!
!
!
!
!
!
!
mta receive maximum-recipients 0
!
!
!
!
interface Loopback0
ip address 192.168.1.1 255.255.255.255
!
interface FastEthernet0/0
description connection_to_ER1
ip vrf forwarding VPN_A
ip address 10.1.0.2 255.255.255.0
speed 100
full-duplex
!
interface FastEthernet0/1
description connection_to_P2
ip address 192.168.1.9 255.255.255.252
speed 100
full-duplex
tag-switching ip
!
interface ATM2/0
no ip address
shutdown
no atm ilmi-keepalive
!
router rip
version 2
network 192.168.1.0
!
router bgp 1
no synchronization
bgp log-neighbor-changes
network 192.168.1.1 mask 255.255.255.255
redistribute static
neighbor 192.168.1.2 remote-as 1
neighbor 192.168.1.2 update-source Loopback0
no auto-summary
!
address-family ipv4 vrf VPN_A
redistribute connected
redistribute static
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 192.168.1.2 activate
neighbor 192.168.1.2 send-community both
no auto-summary
exit-address-family
!
ip classless
ip route vrf VPN_A 10.1.1.0 255.255.255.0 FastEthernet0/1 10.1.0.1
ip route vrf VPN_A 10.1.4.1 255.255.255.255 FastEthernet0/1 10.1.0.1
ip http server
!
!
!
!
!
call rsvp-sync
!
!
mgcp profile default
!
!
!
dial-peer cor custom
!
!
!
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end

PE2#show ip bgp vpnv4 all summary
BGP router identifier 192.168.1.2, local AS number 1
BGP table version is 19, main routing table version 19
4 network entries and 4 paths using 740 bytes of memory
4 BGP path attribute entries using 240 bytes of memory
1 BGP extended community entries using 24 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP activity 9/3 prefixes, 9/3 paths, scan interval 15 secs

Neighbor        V    AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd
192.168.1.1     4     1    5186    5184       19    0    0 3d14h           2

PE2# sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

Gateway of last resort is not set

     192.168.1.0/24 is variably subnetted, 10 subnets, 2 masks
R       192.168.1.8/30 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.12/30 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.1/32 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.3/32 [120/1] via 192.168.1.25, 00:00:09, FastEthernet0/1
C       192.168.1.2/32 is directly connected, Loopback0
R       192.168.1.5/32 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.4/32 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
C       192.168.1.24/30 is directly connected, FastEthernet0/1
R       192.168.1.16/30 [120/1] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.20/30 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1

PE2#ping 192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms

PE2#ping 10.1.0.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.0.2, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)

PE2#sh run
Building configuration...

Current configuration : 1837 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname PE2
!
enable password cisco
!
ip subnet-zero
!
!
!
ip vrf VPN_A
rd 1:1
route-target export 1:1
route-target import 1:1
!
ip cef
mpls label protocol ldp
tag-switching tdp router-id Loopback0 force
!
!
!
!
!
!
!
!
!
!
!
mta receive maximum-recipients 0
!
!
!
!
interface Loopback0
ip address 192.168.1.2 255.255.255.255
!
interface FastEthernet0/0
description connection_to_ER2
ip vrf forwarding VPN_A
ip address 10.4.0.2 255.255.255.0
speed 100
full-duplex
!
interface FastEthernet0/1
description connection_to_P1
ip address 192.168.1.26 255.255.255.252
speed 100
full-duplex
tag-switching ip
!
interface FastEthernet1/0
description connection_to_PBX
no ip address
speed 100
full-duplex
!
interface FastEthernet1/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM2/0
no ip address
shutdown
no atm ilmi-keepalive
!
router rip
version 2
network 192.168.1.0
!
router bgp 1
no synchronization
bgp log-neighbor-changes
network 192.168.1.2 mask 255.255.255.255
redistribute static
neighbor 192.168.1.1 remote-as 1
neighbor 192.168.1.1 update-source Loopback0
no auto-summary
!
address-family ipv4 vrf VPN_A
redistribute connected
redistribute static
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 192.168.1.1 activate
neighbor 192.168.1.1 send-community both
no auto-summary
exit-address-family
!
ip classless
ip route vrf VPN_A 10.4.1.0 255.255.255.0 FastEthernet0/1 10.4.0.1
ip route vrf VPN_A 10.4.4.1 255.255.255.255 FastEthernet0/1 10.4.0.1
ip http server
!
!
!
!
!
call rsvp-sync
!
!
mgcp profile default
!
!
!
dial-peer cor custom
!
!
!
!
line con 0
line aux 0

PE2# sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area
       * - candidate default, U - per-user static route, o - ODR
       P - periodic downloaded static route

Gateway of last resort is not set

     192.168.1.0/24 is variably subnetted, 10 subnets, 2 masks
R       192.168.1.8/30 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.12/30 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.1/32 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.3/32 [120/1] via 192.168.1.25, 00:00:09, FastEthernet0/1
C       192.168.1.2/32 is directly connected, Loopback0
R       192.168.1.5/32 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.4/32 [120/2] via 192.168.1.25, 00:00:09, FastEthernet0/1
C       192.168.1.24/30 is directly connected, FastEthernet0/1
R       192.168.1.16/30 [120/1] via 192.168.1.25, 00:00:09, FastEthernet0/1
R       192.168.1.20/30 [120/3] via 192.168.1.25, 00:00:09, FastEthernet0/1
PE2#ping 192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms
PE2#ping 10.1.0.2

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.0.2, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
PE2#sh run
Building configuration...

Current configuration : 1837 bytes
!
version 12.2
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname PE2
!
enable password cisco
!
ip subnet-zero
!
!
!
ip vrf VPN_A
rd 1:1
route-target export 1:1
route-target import 1:1
!
ip cef
mpls label protocol ldp
tag-switching tdp router-id Loopback0 force
!
!
!
!
!
!
!
!
!
!
!
mta receive maximum-recipients 0
!
!
!
!
interface Loopback0
ip address 192.168.1.2 255.255.255.255
!
interface FastEthernet0/0
description connection_to_ER2
ip vrf forwarding VPN_A
ip address 10.4.0.2 255.255.255.0
speed 100
full-duplex
!
interface FastEthernet0/1
description connection_to_P1
ip address 192.168.1.26 255.255.255.252
speed 100
full-duplex
tag-switching ip
!
interface FastEthernet1/0
description connection_to_PBX
no ip address
speed 100
full-duplex
!
interface FastEthernet1/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM2/0
no ip address
shutdown
no atm ilmi-keepalive
!
router rip
version 2
network 192.168.1.0
!
router bgp 1
no synchronization
bgp log-neighbor-changes
network 192.168.1.2 mask 255.255.255.255
redistribute static
neighbor 192.168.1.1 remote-as 1
neighbor 192.168.1.1 update-source Loopback0
no auto-summary
!
address-family ipv4 vrf VPN_A
redistribute connected
redistribute static
no auto-summary
no synchronization
exit-address-family
!
address-family vpnv4
neighbor 192.168.1.1 activate
neighbor 192.168.1.1 send-community both
no auto-summary
exit-address-family
!
ip classless
ip route vrf VPN_A 10.4.1.0 255.255.255.0 FastEthernet0/1 10.4.0.1
ip route vrf VPN_A 10.4.4.1 255.255.255.255 FastEthernet0/1 10.4.0.1
ip http server
!
!
!
!
!
call rsvp-sync
!
!
mgcp profile default
!
!
!
dial-peer cor custom
!
!
!
!
line con 0
line aux 0
line vty 0 4
password cisco
login
!
end

Hi Ken,

10.4.0.2 prefix will be in your VRF routing table and not in your global routing table. Try "show ip route vrf VPN_A" and try "ping vrf VPN_A 10.4.0.2"

HTH,

Nagendra

I just confirmed that naikumar...thanks...but i cant figure out why i cant ping across the VPN network. If you dont mind i can send you a show run of all the routers in the netwrok to your email add

Hello,

Can you post output of

> "sh ip bgp vpnv4 all" from both PE

> "sh ip route" from End routers

> Source/destination IP along with trace from both end routers

Regards

Mahesh

I appreciate your responses. I sincerely want to get to the bottom of this. Find attached

PE1#sh ip bgp vpnv4 all
BGP table version is 7, local router ID is 192.168.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf VPN_A)
*> 10.1.0.0/24      0.0.0.0                  0         32768 ?
*> 10.1.1.0/24      10.1.0.1                 0         32768 ?
*> 10.1.4.1/32      10.1.0.1                 0         32768 ?
PE1#

ER1#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route

Gateway of last resort is 10.1.0.2 to network 0.0.0.0

     10.0.0.0/8 is variably subnetted, 3 subnets, 2 masks
C       10.1.1.0/24 is directly connected, FastEthernet0/0
C       10.1.0.0/24 is directly connected, FastEthernet0/1
C       10.1.4.1/32 is directly connected, Loopback0
S*   0.0.0.0/0 [1/0] via 10.1.0.2, FastEthernet0/0
ER1#

S*   0.0.0.0/0 [1/0] via 10.1.0.2, FastEthernet0/0
ER1#ping 10.4.0.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.4.0.1, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)

ER1#traceroute 10.4.0.1

Type escape sequence to abort
Tracing the route to 10.4.0.1

  1  *  *  *
  2  *  *  *
  3  *  *  *
  4  *  *  *
  5  *  *  *
  6  *  *  *
  7  *  *  *

PE2#sh ip bgp vpnv4 all
BGP table version is 13, local router ID is 192.168.1.2
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf VPN_A)
*>i10.1.0.0/24      192.168.1.1              0    100      0 ?
*>i10.1.1.0/24      192.168.1.1              0    100      0 ?
*>i10.1.4.1/32      192.168.1.1              0    100      0 ?
*> 10.4.0.0/24      0.0.0.0                  0         32768 ?
*> 10.4.1.0/24      10.4.0.1                 0         32768 ?
*> 10.4.4.1/32      10.4.0.1                 0         32768 ?
PE2#

ER2#sh ip route
Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
       D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
       N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
       E1 - OSPF external type 1, E2 - OSPF external type 2
       i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
       ia - IS-IS inter area, * - candidate default, U - per-user static route
       o - ODR, P - periodic downloaded static route

Gateway of last resort is 10.4.0.2 to network 0.0.0.0

     10.0.0.0/8 is variably subnetted, 3 subnets, 2 masks
C       10.4.4.1/32 is directly connected, Loopback0
C       10.4.0.0/24 is directly connected, FastEthernet0/1
C       10.4.1.0/24 is directly connected, FastEthernet0/0
S*   0.0.0.0/0 [1/0] via 10.4.0.2, FastEthernet0/0
ER2#

ER2#ping 10.1.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
ER2#traceroute 10.1.1.1

Type escape sequence to abort.
Tracing the route to 10.1.1.1

  1  *  *  *
  2  *  *  *
  3  *  *  *
  4  *  *  *
  5  *  *  *

Hello,

I have gone through all your output and compare it with topology you shared.
But in your topology ER1 is shown connected to PE1/PE2 but ER2 is no where.

But anyway as per the output you shared recently.

It looks like PE is not having all the vpnv4 required routes available

like

> PE1 should have Route for 10.4.0.0/24  routes available which is not there.

    above routes should be there as you already have configured redistributed connected under address-family

Can you confirm whether below command output should have 10.4.0.0/24 is advt. or not

PE2

sh ip bgp vpnv4 all neighbor 192.168.1.1 advertised-routes

if not clear bgp session between PE1/PE2

In summary your source/destination IP routes should be there in both PE's

Regards

Mahesh

Gohil

I think your observation about my diagram is just an error while i was drawing.

For the 10.4 and 10.1 routes that are not in the PE1 and PE2(as shown below), i think that should obviously be the problem. But how do you think i can resolve this

PE2#sh ip bgp vpnv4 all neighbor 192.168.1.1 advertised-routes
BGP table version is 13, local router ID is 192.168.1.2
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf VPN_A)
*> 10.4.0.0/24      0.0.0.0                  0         32768 ?
*> 10.4.1.0/24      10.4.0.1                 0         32768 ?
*> 10.4.4.1/32      10.4.0.1                 0         32768 ?

PE1#sh ip bgp vpnv4 all neighbor 192.168.1.2 advertised-routes
BGP table version is 13, local router ID is 192.168.1.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop            Metric LocPrf Weight Path
Route Distinguisher: 1:1 (default for vrf VPN_A)
*> 10.1.0.0/24      0.0.0.0                  0         32768 ?
*> 10.1.1.0/24      10.1.0.1                 0         32768 ?
*> 10.1.4.1/32      10.1.0.1                 0         32768 ?

Hi,

Please add next-hop-self for iBGP peer between PE1 and PE2.

HTH,

Lei Tian

Hello,

Next hop will automatically changed to the local PE for MP-BGP session so next-hop self is not required

I can see that PE2 is advt. route correctly and can you confirm that it is received correctly by PE1

PE1#sh ip bgp vpnv4 all neighbor 192.168.1.2 routes

also post output of sh ip bgp vpnv4 all 10.4.0.0/24    

Regards

Mahesh

You are right Mahesh, change next-hop-self is irrelevant here. My bad. +5

To kennifeh1,

The static default route on ER1 and ER2 is pointing to fa0/0, it should point to fa0/1.

HTH,

Lei Tian