Re: OSPF with Cisco router and Checkpoint FW-1

o-ziltener · ‎12-12-2005

I have a pair of two Checkpoints and two Cisco Router with talk to eachother with ospf. What is to preferred way to set DR and BDR?

Harold Ritter · ‎12-12-2005

Just to be safe, I would set the priority higher on the two Cisco routers to have them to become DR and BDR.

Hope this helps,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)

o-ziltener · ‎12-13-2005

Hello

thanks for the answer. It seems that Checkpoints (based on Nokia Boxes) doesn't form any ospf neighborship to eachother. And when the active router is not DR or DBR, then we got a few troubles to reach devices outside the segment. I found out, that the two nokias does not build up an ospf neighborship to eachother? In the same subnet, there are two Cisco router, which the router see all (both nokias and the other router).

Is this behavor for the nokias normal?

any input is very welcome

Georg Pauwen · ‎12-13-2005

Hello Oliver,

I was looking at your post and wondering why the OSPF doesn´t work. AFAIK, the Nokias (IPSO) natively support OSPF. I am not sure where exactly in Voyager OSPF is configured, and if it is turned on by default, but it should be there. Another possibility is that your Checkpoint is blocking OSPF multicast addresss 224.0.0.5 (all routers), and 224.0.0.6 (DR and BDR), can you check if these are allowed through ?

Regards,

GP

o-ziltener · ‎12-13-2005

Hello

thanks for the feedback.

yes, both 224.0.0.5 and 224.0.0.6 are open.

Yes we use voyager Nokia boxes.

The Nokia boxes talk build an ospf neighborship (full) to the routers, so that mean the ospf settings should be ok. Just the both nokias does not build up an ospf neighbor ship.

regards

Oliver

javentre · ‎12-13-2005

Double check your firewall policy.

I would stop the firewall process (on both devices) and see if your neighbor relationships form.