cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1908
Views
15
Helpful
8
Replies

Lab route reflector with VRF

aw75635
Level 1
Level 1

Hello.

I am trying to set up al lab with route reflector and vrf-s. I have managed to set up the route reflectors and clients. All looks fine. Routes are being propagated. 

The issue is that from DMZ router, using the interface assigned to

vrf 14000_custa_access

I cannot ping the interface assigned to

vrf 14000_custa_access

on Edge router. 

If I run 

sh ip route vrf 14000_custa_access

I can see the routes on both routers

DC01-DMZ-R01#sh ip route vrf 14000_custa_access

Routing Table: 14000_custa_access
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override

Gateway of last resort is not set

192.168.50.0/32 is subnetted, 1 subnets
B 192.168.50.1 [200/0] via 15.15.15.15, 00:16:53
192.168.51.0/32 is subnetted, 1 subnets
C 192.168.51.1 is directly connected, Loopback1
192.168.52.0/32 is subnetted, 1 subnets
B 192.168.52.1 [200/0] via 11.11.11.11, 00:16:53
DC01-DMZ-R01#

If I run 

sh ip bgp vpnv4 vrf 14000_custa_access

 

I see the information as well

DC01-DMZ-R01#sh ip bgp vpnv4 vrf 14000_custa_access
BGP table version is 6, local router ID is 13.13.13.13
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
r RIB-failure, S Stale, m multipath, b backup-path, f RT-Filter,
x best-external, a additional-path, c RIB-compressed,
Origin codes: i - IGP, e - EGP, ? - incomplete
RPKI validation codes: V valid, I invalid, N Not found

Network Next Hop Metric LocPrf Weight Path
Route Distinguisher: 14000:14000 (default for vrf 14000_custa_access)
* i 192.168.50.1/32 15.15.15.15 0 100 0 ?
*>i 15.15.15.15 0 100 0 ?
*> 192.168.51.1/32 0.0.0.0 0 32768 ?
* i 192.168.52.1/32 11.11.11.11 0 100 0 ?
*>i 11.11.11.11 0 100 0 ?


Doing a 

debug ip icmp

debug ip packet detail

I see that there is no valid path to 192.168.50.1

What exactly am I missing. Attached config and picture of the setup

Thank you in advance. 

 

1 Accepted Solution

Accepted Solutions

You need MPLS, why ? because of VPNv4.
the global is using to establish BGP Peer 
the Peer when receive packet for VRF destination in global interface the Peer drop packet. 
instead using MPLS make router not depend on RIB instead it use MPLS label to forward traffic to right VRF.

View solution in original post

8 Replies 8

I check the topology, can you more elaborate? can you right subnet and LO you use in your attach topology ?

Hello
got to clarify are you ping the vrf and not the GRT

ping vrf 14000_custa_access xxxxxx

 


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

Hello

Correct, I ping with the VRF

 

DC01-DMZ-R01#ping vrf 14000_custa_access 192.168.50.1


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.50.1, timeout is 2 seconds:

 


DC01-DMZ-R01#ping vrf 14000_custa_access 192.168.50.1 source lo1


Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.50.1, timeout is 2 seconds:
Packet sent with a source address of 192.168.51.1

 

Best regards

aw75635
Level 1
Level 1

Hi

I use OSPF to establish communication between BGP nodes. Using network 172.20.1.0/24

The switch has the ports configured as trunk. 

Loopback interfaces on routers are used to establish neighborships between bgp reflectors and clients

Is there something specific you would like to know?

Best regards!

You need MPLS, why ? because of VPNv4.
the global is using to establish BGP Peer 
the Peer when receive packet for VRF destination in global interface the Peer drop packet. 
instead using MPLS make router not depend on RIB instead it use MPLS label to forward traffic to right VRF.

Hello. Yes it does work with mpls.  Thank you!

So MPLS is a MUST when using VPNV4

Thank you!

 

You are so so welcome 

aw75635
Level 1
Level 1

I am using GNS3 for my LAB

Review Cisco Networking for a $25 gift card