Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1910
Views
15
Helpful
8
Replies

Lab route reflector with VRF

Go to solution
aw75635
Level 1
Level 1

‎11-05-2022 01:58 AM - last edited on ‎11-07-2022 12:39 AM by Community Manager

Hello.

I am trying to set up al lab with route reflector and vrf-s. I have managed to set up the route reflectors and clients. All looks fine. Routes are being propagated. 

The issue is that from DMZ router, using the interface assigned to

vrf 14000_custa_access

I cannot ping the interface assigned to

vrf 14000_custa_access

on Edge router. 

If I run 

sh ip route vrf 14000_custa_access

I can see the routes on both routers

DC01-DMZ-R01#sh ip route vrf 14000_custa_access

Routing Table: 14000_custa_access
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override

Gateway of last resort is not set

192.168.50.0/32 is subnetted, 1 subnets
B 192.168.50.1 [200/0] via 15.15.15.15, 00:16:53
192.168.51.0/32 is subnetted, 1 subnets
C 192.168.51.1 is directly connected, Loopback1
192.168.52.0/32 is subnetted, 1 subnets
B 192.168.52.1 [200/0] via 11.11.11.11, 00:16:53
DC01-DMZ-R01#

If I run 

sh ip bgp vpnv4 vrf 14000_custa_access

 

I see the information as well

DC01-DMZ-R01#sh ip bgp vpnv4 vrf 14000_custa_access
BGP table version is 6, local router ID is 13.13.13.13
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 14000:14000 (default for vrf 14000_custa_access)
* i 192.168.50.1/32 15.15.15.15 0 100 0 ?
*>i 15.15.15.15 0 100 0 ?
*> 192.168.51.1/32 0.0.0.0 0 32768 ?
* i 192.168.52.1/32 11.11.11.11 0 100 0 ?
*>i 11.11.11.11 0 100 0 ?


Doing a 

debug ip icmp

debug ip packet detail

I see that there is no valid path to 192.168.50.1

What exactly am I missing. Attached config and picture of the setup

Thank you in advance. 

 

Labels:
Preview file
2 KB
Preview file
1 KB
Preview file
3 KB
Preview file
2 KB
Preview file
3 KB
Preview file
2 KB
Preview file
71 KB
1 Accepted Solution

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP
In response to aw75635

‎11-05-2022 02:42 AM

You need MPLS, why ? because of VPNv4.
the global is using to establish BGP Peer 
the Peer when receive packet for VRF destination in global interface the Peer drop packet. 
instead using MPLS make router not depend on RIB instead it use MPLS label to forward traffic to right VRF.

View solution in original post

0 Helpful
8 Replies 8

Go to solution
MHM Cisco World
VIP
VIP

‎11-05-2022 02:04 AM

I check the topology, can you more elaborate? can you right subnet and LO you use in your attach topology ?

0 Helpful

Go to solution
paul driver
VIP
VIP

‎11-05-2022 02:22 AM - last edited on ‎11-07-2022 12:40 AM by Community Manager

Hello
got to clarify are you ping the vrf and not the GRT

ping vrf 14000_custa_access xxxxxx

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

Go to solution
aw75635
Level 1
Level 1
In response to paul driver

‎11-05-2022 02:40 AM - last edited on ‎11-07-2022 12:41 AM by Community Manager

Hello

Correct, I ping with the VRF

 

DC01-DMZ-R01#ping vrf 14000_custa_access 192.168.50.1


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.50.1, timeout is 2 seconds:

 


DC01-DMZ-R01#ping vrf 14000_custa_access 192.168.50.1 source lo1


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.50.1, timeout is 2 seconds:
Packet sent with a source address of 192.168.51.1

 

Best regards

0 Helpful

Go to solution
aw75635
Level 1
Level 1

‎11-05-2022 02:27 AM

Hi

I use OSPF to establish communication between BGP nodes. Using network 172.20.1.0/24

The switch has the ports configured as trunk. 

Loopback interfaces on routers are used to establish neighborships between bgp reflectors and clients

Is there something specific you would like to know?

Best regards!

Preview file
94 KB

Go to solution
MHM Cisco World
VIP
VIP
In response to aw75635

‎11-05-2022 02:42 AM

You need MPLS, why ? because of VPNv4.
the global is using to establish BGP Peer 
the Peer when receive packet for VRF destination in global interface the Peer drop packet. 
instead using MPLS make router not depend on RIB instead it use MPLS label to forward traffic to right VRF.

0 Helpful

Go to solution
aw75635
Level 1
Level 1
In response to MHM Cisco World

‎11-05-2022 08:12 AM

Hello. Yes it does work with mpls.  Thank you!

So MPLS is a MUST when using VPNV4

Thank you!

 

Go to solution
MHM Cisco World
VIP
VIP
In response to aw75635

‎11-05-2022 08:16 AM

You are so so welcome 

0 Helpful

Go to solution
aw75635
Level 1
Level 1

‎11-05-2022 02:40 AM

I am using GNS3 for my LAB

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card