Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1735
Views
25
Helpful
34
Replies

single router doual bgp 2921 series isuue

Go to solution
kazimjhon
Level 1
Level 1

‎08-15-2022 11:11 PM

hello

I have just configured bgp with two isp on a single router and i have 2 public /24 prefixes and i want to route one prefix on isp-1 and the 2nd to isp-2. Now i have three issues

1} no maximum-path command found in my router ( Is it must for this configuration )

2) Browsing issue some websites open and some in  buffering mode

3) Both prefixes Traffic goes isp-1 and when isp-1 down then shifted to isp-2

Below is the router version and configuration

R1#show version
Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.4(3)M1, REL
EASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Sat 25-Oct-14 03:34 by prod_rel_team

ROM: System Bootstrap, Version 15.0(1r)M16, RELEASE SOFTWARE (fc1)

KhybeNet-R1 uptime is 4 weeks, 4 days, 13 hours, 53 minutes
System returned to ROM by power-on
System image file is "flash0:c2900-universalk9-mz.SPA.154-3.M1.bin"
Last reload type: Normal Reload
Last reload reason: power-on

 

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

Cisco CISCO2921/K9 (revision 1.0) with 487424K/36864K bytes of memory.
Processor board ID FTX1803AL6G
3 Gigabit Ethernet interfaces
1 terminal line
DRAM configuration is 64 bits wide with parity enabled.
255K bytes of non-volatile configuration memory.
250880K bytes of ATA System CompactFlash 0 (Read/Write)


License Info:

License UDI:

-------------------------------------------------
Device# PID SN
-------------------------------------------------
*1 CISCO2921/K9 FTX1803AL6G

 

Technology Package License Information for Module:'c2900'

------------------------------------------------------------------------
Technology Technology-package Technology-package
Current Type Next reboot
------------------------------------------------------------------------
ipbase ipbasek9 Permanent ipbasek9
security None None None
uc None None None
data datak9 RightToUse datak9
NtwkEss None None None
CollabPro None None None

Configuration register is 0x2102


Building configuration...

Current configuration : 7305 bytes
!
! Last configuration change at 21:51:55 GMT Mon Aug 15 2022
!
version 15.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname KhybeNet-R1
!
boot-start-marker
boot-end-marker
!
!
no logging console
no logging monitor

!
aaa new-model
!
!
!
!
!
!
!
aaa session-id common
clock timezone GMT 5 0
!
!
!
!
!
!
!
!
!
!
ip domain name
ip cef
no ipv6 cef
multilink bundle-name authenticated
!
!
!
cts logging verbose
!
!
license udi pid CISCO2921/K9 sn FTX1803AL6G
license boot module c2900 technology-package datak9
!
!

!
redundancy
!
!
!
!
!
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
ip address 192.168.1.2 255.255.255.252
description ISP-1
duplex full
speed 1000
no cdp enable
!
interface GigabitEthernet0/1
description LAN
no ip address
duplex auto
speed auto
no cdp enable
!
interface GigabitEthernet0/1.1
encapsulation dot1Q 100
ip address 103.217.136.1 255.255.255.0
!
interface GigabitEthernet0/1.2
encapsulation dot1Q 101
!
interface GigabitEthernet0/1.3
encapsulation dot1Q 102
ip address 103.157.36.1 255.255.255.0

interface GigabitEthernet0/2
description ISP-2
ip address 192.168.2.2 255.255.255.252
shutdown
duplex auto
speed auto
!
!
router bgp 135384
bgp log-neighbor-changes
neighbor 192.168.2.1 remote-as 38264
neighbor 192.168.2.1 description BGP With ISP-2
neighbor 192.168.1.1 remote-as 17557
neighbor 192.168.1.1 description BGP With ISP-1
!
address-family ipv4
network 103.157.36.0 mask 255.255.255.0
network 103.217.136.0 mask 255.255.255.0
network 192.168.2.0 mask 255.255.255.252
network 192.168.1.0 mask 255.255.255.252
neighbor 192.168.2.1 activate
neighbor 192.168.2.1 advertise-map ADVERTISED-ISP2 non-exist-map NON-EXIT-I
SP2
neighbor 192.168.2.1 soft-reconfiguration inbound
neighbor 192.168.2.1 filter-list 1 out
neighbor 192.168.1.1 activate
neighbor 192.168.1.1 advertise-map ADVERTISED-ISP1 non-exist-map NON-EXIT-
ISP1
neighbor 192.168.1.1 soft-reconfiguration inbound
neighbor 192.168.1.1 filter-list 1 out
exit-address-family
!
ip forward-protocol nd
!
ip as-path access-list 1 permit ^$

no ip http server
ip http authentication aaa
no ip http secure-server
!
ip route 0.0.0.0 0.0.0.0 192.168.1.1
ip route 0.0.0.0 0.0.0.0 192.168.2.1
ip route 103.157.36.0 255.255.255.0 Null0
ip route 103.217.136.0 255.255.255.0 Null0

!
!
route-map NON-EXIT-ISP1 permit 10
match ip address 30
!
route-map NON-EXIT-ISP2 permit 10
match ip address 50
!
route-map ADVERTISED-ISP1 permit 10
match ip address 40
!
route-map ADVERTISED-ISP2 permit 10
match ip address 20
!
!

access-list 20 permit 103.217.136.0 0.0.0.255
access-list 30 permit 192.168.2.0 0.0.0.3
access-list 40 permit 103.157.36.0 0.0.0.255
access-list 50 permit 192.168.1.0 0.0.0.3

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-21-2022 11:52 AM - edited ‎08-21-2022 12:02 PM

bvbvnbvnvb.png
!

!
! Last configuration change at 21:33:15 UTC Sun Aug 21 2022
!
version 15.2
service timestamps debug datetime msec
service timestamps log datetime msec
!
hostname R4-YourRouter
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
no ip icmp rate-limit unreachable
ip cef
!
!
!
!
!
!
no ip domain lookup
no ipv6 cef
!
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
!
!
ip tcp synwait-time 5
!
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
 ip address 103.158.35.1 255.255.255.0
 ip policy route-map 158OUT
 duplex full
!
interface FastEthernet1/0
 no ip address
 shutdown
 speed auto
 duplex auto
!
interface FastEthernet1/1
 ip address 103.216.135.1 255.255.255.0
 ip policy route-map 216OUT
 speed auto
 duplex auto
!
interface FastEthernet2/0
 no ip address
 shutdown
 speed auto
 duplex auto
!
interface FastEthernet2/1
 no ip address
 shutdown
 speed auto
 duplex auto
!
interface Serial3/0
 ip address 182.176.221.174 255.255.255.252
 serial restart-delay 0
!
interface Serial3/1
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/2
 no ip address
 shutdown
 serial restart-delay 0
!
interface Serial3/3
 ip address 110.39.166.146 255.255.255.252
 serial restart-delay 0
!
interface GigabitEthernet4/0
 no ip address
 shutdown
 negotiation auto
!
router bgp 135384
 bgp log-neighbor-changes
 network 103.158.35.0 mask 255.255.255.0
 network 103.216.135.0 mask 255.255.255.0
 neighbor 110.39.166.145 remote-as 38264
 neighbor 110.39.166.145 route-map 216Traffic out
 neighbor 110.39.166.145 filter-list 382 out
 neighbor 182.176.221.173 remote-as 17557
 neighbor 182.176.221.173 route-map 158Traffic out
 neighbor 182.176.221.173 filter-list 175 out
!
ip forward-protocol nd
!
ip as-path access-list 175 permit ^$
ip as-path access-list 382 permit ^$
!
no ip http server
no ip http secure-server
!
!
ip prefix-list 158Traffic seq 10 permit 103.158.35.0/24
!
ip prefix-list 216Traffic seq 10 permit 103.216.135.0/24
access-list 100 permit ip 103.158.35.0 0.0.0.255 any
access-list 110 permit ip 103.216.135.0 0.0.0.255 any
!
route-map 158Traffic permit 10
 match ip address prefix-list 216Traffic
 set as-path prepend 135384
!
route-map 158Traffic permit 20
!
route-map 158OUT permit 10
 match ip address 100
 set interface Serial3/0
!
route-map 216Traffic permit 10
 match ip address prefix-list 158Traffic
 set as-path prepend 135384
!
route-map 216Traffic permit 20
!
route-map 216OUT permit 10
 match ip address 110
 set interface Serial3/3
!
!
!
control-plane
!
!
line con 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
 stopbits 1
line aux 0
 exec-timeout 0 0
 privilege level 15
 logging synchronous
 stopbits 1
line vty 0 4
 login
!
!
end

View solution in original post

0 Helpful
34 Replies 34

Go to solution
MHM Cisco World
VIP
VIP

‎08-16-2022 02:34 AM

there are many wrong command, 
I will make small LAB for you and share today 

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to MHM Cisco World

‎08-16-2022 03:30 AM

Thank you

This is condiontional Load Sharing.

 

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-16-2022 05:04 AM

I know i will do lab and send to you

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎08-16-2022 06:07 AM - edited ‎08-16-2022 01:21 PM

see below final small lab

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to MHM Cisco World

‎08-16-2022 07:48 AM

Thanks for your kind reply.I will check this and will update you.

As i have peers with two different ISP my router will not transit for international transit ?

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-16-2022 08:23 AM

That issue you need as-path filter, i will send you steps 

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to MHM Cisco World

‎08-16-2022 08:39 AM

i have two public prefixes 

so in router bgp

103.157.36.0 mask 255.255.255.0

103.217.136.0 mask 255.255.255.0

is this right?

and two default routes

0.0.0.0 0.0.0.0 192.168.1.1

0.0.0.0 0.0.0.0 192.168.2.1

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to kazimjhon

‎08-16-2022 08:43 AM

you have mentioned both neighbores in one as

neighbor 100.0.0.3 remote-as 200

neighbor 200.0.0.2 remote-as 200

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-16-2022 09:36 AM

Yes in my lab I use same AS (200) for both 100.0.0.3 and 200.0.0.2.
Now 
you receive default route from both ISP
and also you receive two public IP, same public IP from two different ISP?

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to MHM Cisco World

‎08-16-2022 09:57 AM

my condition is load sharing

I have to different ISp with different AS number

i want to advertised103.217.136.0/24 only on ISP-A and 103.157.36.0/24 on ISP-B. When ISP-A goes down both prefixes auto advertised on ISP-B and same for ISP-B down prefixes should shift to ISP-A

I have configured your configuration but both prefixes out on ISP-A.

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-16-2022 10:18 AM

I will do double check in my lab 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎08-16-2022 01:28 PM - edited ‎08-21-2022 11:55 AM

see comment below

0 Helpful

Go to solution
kazimjhon
Level 1
Level 1
In response to MHM Cisco World

‎08-16-2022 10:00 PM

i have access to just my router others are ISP router. i am little confused that you have mentioned router bgp 100. kinldy shre the configuration of router bgp 400.

1) kindly mentioned that my router will as transit

2) upload and download goes through isp-A

3) upload and download goes through isp-B

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to kazimjhon

‎08-17-2022 03:55 AM - edited ‎08-21-2022 11:55 AM

see comment below 

0 Helpful
Customers Also Viewed These Support Documents