Thank you for your response, Jeff.

This is a Cisco 2691 with 128MB of memory.

Here is a partial config:

interface Serial0/0

description ATT

bandwidth 1536

ip address 12.12.12.2 255.255.255.252

no ip unreachables

encapsulation ppp

service-module t1 timeslots 1-24

interface Serial0/1.100 point-to-point

description Verizon

bandwidth 1536

ip address 20.20.20.2 255.255.255.252

no ip unreachables

no cdp enable

frame-relay interface-dlci 100 IETF

router bgp 31000

no synchronization

bgp log-neighbor-changes

network 12.12.248.0 mask 255.255.255.0

timers bgp 30 90

neighbor 12.12.12.1 remote-as 7018

neighbor 12.12.12.1 description ATT Peering

neighbor 12.12.12.1 soft-reconfiguration inbound

neighbor 12.12.12.1 route-map ATT_only in

neighbor 12.12.12.1 route-map localonly out

neighbor 20.20.20.1 remote-as 6995

neighbor 20.20.20.1 description Verizon Peering

neighbor 20.20.20.1 soft-reconfiguration inbound

neighbor 20.20.20.1 route-map Verizon_only in

neighbor 20.20.20.1 route-map localonly out

no auto-summary

!

ip classless

ip route 0.0.0.0 0.0.0.0 12.12.12.1

ip route 0.0.0.0 0.0.0.0 20.20.20.1

!

ip as-path access-list 10 permit ^$

ip as-path access-list 20 permit ^1010$

ip as-path access-list 30 permit ^2020$

route-map ATT_only permit 10

match as-path 20

!

route-map Verizon_only permit 10

match as-path 30

!

route-map localonly permit 10

match as-path 10

Regards,

dk

I rushed to make some assumptions when I stated that you didn't need the default routes. You may indeed need them, so don't pull them yet! ;)

Let me look over your config, nothing is jumping out as obviously wrong...

Jeff

HI daniel,

May be your problem is solved with a lot of replies. I just want to contribute..I don't see any problem whatsoever with your BGP configuration. Problem is just with your default route.If you were multi-homing with the same SP then fine.But as you are doing it with 2 different SP's then you need to configure the default route with administrative distance, giving priority to one of them.

Rgds

Homin

I am pinging the serial interface addresses of the router. When I ping one of my public addresses from the block I am advertising to the my bgp peers (i.e. 12.12.248.0), I almost never get dropped packets. These replies are not sourced from the router.

From what I can guess, it looks as though the router is sending the echo replies out both interfaces in some sort of round-robin fashion. Since the replies are sourced from the router - and the source address of the reply is the router's serial interface - packets sent on the other SPs network get blocked. That is, replies from the ATT interface that get sent out the Verizon network get blocked, and vise versa.

The only thing I might do is increase the admin distance on my static default routes so they stop showing as RIB-failures.

Does this make sense?

You can increase the admin distance on your static routes, so the BGP routes are installed instead. I would probably pull the static routes altogether, since you are getting bgp routes.

I don't think this will matter on the issue of dropping some echo replies, though, since I think that's just normal rate limiting.

:-)

Russ.W

I thought EGP is preferred over IGP (in my experience with BGP). Default route in BGP is the gateway of last resort.

When combine together, EGP will be injected in the routing table over IGP. If you see only the default route, that means you BGP is not working and the Gateway of last resort is activated hence when you remove the default route - the connection lost.

Have you done a "show ip bgp neighbor" to see if your BGP session with two neighbor is established?

What do you see in "show ip bgp" only the default route?

You can also do a "show ip bgp summary".

Best Regards.

It depends on several factors, one of which is the administrative distance of the route. Static routes will always be preferred over eBGP learned routes, unless you make the static route "float" by increasing its administrative distance.

There are some cases where BGP ignores the administrative distance, and the non-BGP route is preferred over the BGP route, or the other way around, but not in this case--the statics will be installed instead of the eBGP learned routes.

:-)

Russ.W

Thanks, Russ. I believe I may have this issue under control. Some things, such as the SP's router configs and, to some extent, the routes bgp uses in and out of my network, are out of my control. This exercise began because one of the SP's was complaining that the echo replies for their monitoring station were being dropped intermittantly. That resulted in some navel gazing and experimentation to try to determine what was going on.

As it stands, it looks as though one of our SP's is not advertising our specific route - it is being summarized. I entered static routes for the SP's management LANs to force the echo response to use the correct path.

Regards,

dk

I'm glad to hear things are under control. You may want to consider removing those static routes if you don't need them. I can't see if you're using them to redistribute into an IGP, so proceed with caution and common sense on this advise.

I suggest this, because if one of your upstream providers has problems, but your link to the next hop stays up, you'll lose the eBGP route, but the static will continue to send traffic to the troubled ISP. This kind of undermines the whole purpose of dual homing.

Good luck!

Jeff

So, then, it could have been an rpf problem, as well--at least that's what it sounds like. I would ask the other ISPF to punh a hole in their summary for the other route.

:-)

Russ.W