Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1929
Views
0
Helpful
0
Replies

Route leaking between VRF's (IPv6)

sunnnaik1
Level 1
Level 1

‎08-03-2017 01:35 AM

Hello All,

Refer: attached network architecture design

I have a network design as attached. Currently we are migrating from IPv4 to IPv6 in our organization & are stuck with one issue. Below is the config from Cisco 6509 catalyst switch for your reference.

CONFIGURATION of Cisco 6509 Catalyst Switch:

Interface Configs:

!
Interface Te3/2
vrf forwarding PUB
ip address 10.240.2.5 255.255.255.0
no ip redirects
no ip unreachables
ipv6 address 2403:BE80:1000::1/39
ipv6 enable
End
!
Vlan 25
!
interface Vlan25
vrf forwarding SHARED
ip address 10.190.4.254 255.255.255.128
no ip redirects
no ip unreachables
ipv6 address 2403:BE80:2000::1/39
ipv6 enable
End
!
Interface Fa4/32
Switchport
Switchport access vlan 25
Switchport mode access
!

VRF configs:

!
vrf definition PUB
rd 200:200
route-target export 200:200
route-target import 300:300
route-target import 200:200
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!
vrf definition SHARED
rd 300:300
route-target export 300:300
route-target import 300:300
route-target import 200:200
!
address-family ipv4
exit-address-family
!
address-family ipv6
exit-address-family
!

BGP Config:

router bgp 65535
!
address-family ipv4 vrf SHARED
redistribute connected
redistribute static
no synchronization
exit-address-family
!
address-family ipv6 vrf SHARED
redistribute connected
redistribute static
no synchronization
exit-address-family
!
address-family ipv4 vrf PUB
redistribute connected
redistribute static
default-information originate
no synchronization
exit-address-family
!
address-family ipv6 vrf PUB
redistribute connected
redistribute static
no synchronization
exit-address-family
!

PROBLEM DESCRIPTION:

  • When i try to ping the interface Te3/2 IPv6 address (under vrf PUB) from the PC connected under SHARED vrf, i am not able to ping it. i have done route leaking between vrf PUB & vrf SHARED as can be seen from the config above.
  • Cisco 6509 switch itself is not able to ping the IPv6 address configured on Te3/2 if pinged from SHARED vrf & vice versa.

Both the Networks (1000 & 2000) are seen in the ipv6 routing table under their specific vrf's as ebgp learned routes, but not able to ping each other. Output is as under

Cisco6509#sh ipv6 route vrf SHARED
IPv6 Routing Table - SHARED - 16 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, I1 - ISIS L1, I2 - ISIS L2
IA - ISIS interarea, IS - ISIS summary, D - EIGRP, EX - EIGRP external
O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF ext 1, OE2 - OSPF ext 2
ON1 - OSPF NSSA ext 1, ON2 - OSPF NSSA ext 2
B    2403:BE80:800::/39 [20/0]
      via Vlan20, directly connected
B    2403:BE80:1000::/39 [20/0]
      via TenGigabitEthernet3/2, directly connected
C    2403:BE80:2000::/39 [0/0]
      via Vlan25, directly connected
L    2403:BE80:2000::1/128 [0/0]
      via Vlan25, receive

Cisco6509#sh ipv6 route vrf PUB
IPv6 Routing Table - PUB - 7 entries
Codes: C - Connected, L - Local, S - Static, U - Per-user Static route
B - BGP, R - RIP, I1 - ISIS L1, I2 - ISIS L2
IA - ISIS interarea, IS - ISIS summary, D - EIGRP, EX - EIGRP external
O - OSPF Intra, OI - OSPF Inter, OE1 - OSPF ext 1, OE2 - OSPF ext 2
ON1 - OSPF NSSA ext 1, ON2 - OSPF NSSA ext 2
S      ::/0 [1/0]
        via 2403:BE80:1000::2
C      2403:BE80:800::/39 [0/0]
        via Vlan20, directly connected
L       2403:BE80:800::1/128 [0/0]
         via Vlan20, receive
C       2403:BE80:1000::/39 [0/0]
         via TenGigabitEthernet3/2, directly connected
L       2403:BE80:1000::1/128 [0/0]
         via TenGigabitEthernet3/2, receive
B       2403:BE80:2000::/39 [20/0]
          via Vlan25, directly connected

PING OUTPUT:

Cisco6509#ping vrf SHARED 2403:BE80:1000::1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2403:BE80:1000::1, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)
Cisco6509#
Cisco6509#ping vrf PUB 2403:BE80:1000::1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2403:BE80:1000::1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/0 ms
Cisco6509#

Can anybody put some light on this above issue? do let me know if anything else needs to be configured to achieve inter vrf routing under IPv6.

Please note that with IPv4 it is working perfectly fine with same config as above.

Awaiting for a solution.

With best Regards,

Sunny

5 people had this problem
Labels:
Preview file
54 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents