Basic MPLS VPN needs loopbacks for PE routers

vincehgov · ‎04-19-2013

Why do the PE routers need to use loopbacks for iBGP peering in order for traffic to pass through.

I tried configuring with and without the loopbacks. It doesn't work if I peer the two iBGP routers using physical interface IPs.

I get the error:

*Mar 1 02:44:48.159: %BGP-4-VPNV4NH_IF: Nexthop 10.3.4.4 may not be reachable from neigbor 10.2.3.2 - not a loopback

I want to know the technical reason as to why it wont work without it. I tried looking at the ip cef table and it looks identical.

Can someone enlighten me?

Thanks!

Vince

vincehgov · ‎04-19-2013

By the way, I can ping 10.3.4.4 from 10.2.3.2 just fine. Those are the P facing interfaces of the PE routers.

vincehgov · ‎04-19-2013

Yikes! I should've searched first:

https://supportforums.cisco.com/thread/249438

Harold Ritter · ‎04-19-2013

Hi Vincent,

You are welcome ;-)

Have a great week end

Harold Ritter
Sr Technical Leader
CCIE 4168 (R&S, SP)
harold@cisco.com
México móvil: +52 1 55 8312 4915
Cisco México
Paseo de la Reforma 222
Piso 19
Cuauhtémoc, Juárez
Ciudad de México, 06600
México

vincehgov · ‎04-22-2013

Yeah thanks Harold.

To anyone else who stumbles upon this issue:

Since the next-hop address would be the PE's MPLS facing interface, the external MPLS label that is added targets the network segment that connects P to PE. Since P is directly connected to that network, the previously hop would pop off the external label as per PHP behavior.

Therefor, peering with the loopbacks would cause a different external label to be added- one that will make it all the way to the PE.