debug and route redistribute question

wchan1 · ‎04-18-2022

Hi, There,

Here is my topology,

--------L2TP-------

(local lan)G0/0/0--------------------Loopback0-----------g1/0/2(remote lan)

There are static and bgp route. i have 2 questions:

1. i don't see any redistribute static setting in config. can redistribute be done with route map only?

2. when i run debug ip policy 1, debug ip nat 1, debug ip packet 1. i don't see any packet to remote lan, but i can see it in wireshark, is it because traffic encrypted in l2tp so that i cannot see in the log?

here is my config:

ip access-list standard 1
10 permit any log
ip access-list extended 100
10 permit ip 192.168.31.0 0.0.0.255 10.11.93.0 0.0.0.255(remote LAN) log-input
20 permit ip 192.168.31.0 0.0.0.255 10.12.93.0 0.0.0.255(remote LAN) log-input
30 permit ip 192.168.31.0 0.0.0.255 10.188.211.0 0.0.0.255(inside global) log-input

ip nat inside source static 192.168.31.10 10.188.211.14 route-map c

ip nat inside source route-map a interface GigabitEthernet1/0/0 overload

ip nat inside source route-map b interface GigabitEthernet1/0/2 overload

route-map a permit 10
match ip address 1
match interface GigabitEthernet1/0/0

route-map b permit 10
match ip address 1
match interface GigabitEthernet1/0/2

route-map c permit 10
match ip address 100
set ip next-hop 10.188.211.254
!
route-map c permit 20
match ip address 100
set ip next-hop 10.188.211.254
!
route-map c permit 30
match ip address 100
set ip next-hop 10.188.211.254

MHM Cisco World · ‎04-18-2022

can you more elaborate where is L2TP ? and why there is LO in middle ?

Georg Pauwen · ‎04-18-2022

Hello,

I agree with @MHM Cisco World, we need to see the full running configurations (sh run) of both routers as well...

wchan1 · ‎04-18-2022

@Georg Pauwen @MHM Cisco World Hi, Thanks your help.

Here is config. look forward your reply.

MHM Cisco World · ‎04-19-2022

router bgp 64880
address-family ipv4
network 0.0.0.0 <- can be config with default information originate
network 10.155.237.0 mask 255.255.255.224 <- this and all any prefix that not found in RIB the BGP can not advertise to other BGP peer.
so 10.155.237.0 is not found in routing table "not connect, local , static or learn from routing protocol" so BGP never advertise it to other BGP peer.

wchan1 · ‎04-19-2022

I have bgp table like below. does it affect the routing to 10.1.10.0 if i miss default info originate? Also, from the bgp setting below, there is no redistribute static config. can redistribute perform without redistribute <ospf,static.......>?

R1#sh ip bgp
BGP table version is 21, local router ID is 192.168.0.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
t secondary path, L long-lived-stale,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

Network Next Hop Metric LocPrf Weight Path
* 10.1.10.0/24 169.254.141.17 0 65000 64512 i
*> 10.222.111.210 0 65010 64512 i
*> 10.150.99.0/24 0.0.0.0 0 32768 i
*> 10.161.36.0/24 0.0.0.0 0 32768 i
*> 10.143.52.0/24 0.0.0.0 0 32768 i
*> 192.168.100.0 0.0.0.0 0 32768 i
*> 192.168.110.0 0.0.0.0 0 32768 i
*> 192.168.222.0 0.0.0.0 0 32768 i

Thank you for your reply

MHM Cisco World · ‎04-19-2022

for NAT, there are two NAT with route-map and there is one ACL "ACL 1" so I think you missing config the ACL for second route-map

wchan1 · ‎04-19-2022

For the NAT: