Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
617
Views
1
Helpful
8
Replies

layer 3 peer-router command doubt

irenof
Spotlight
Spotlight

‎11-04-2024 04:20 AM

Hi all,

I have to configure two N9Ks with a VPC peer-link. Each device also establish BGP sessions with a CE, as shwon in the figure

irenof_0-1730722193568.png

Each device has its own /30 SVI to the CE.

My question is, should I insert the commandlayer 3 peer-router in the VPC domain configuration? I suppose no, since each session has its own /30 SVI, but the trunk of the PO has both the VLAN, so I could be possible that the has alg chooses other leg. For example BGP session from CE to A passes through B. And B sees SVI MAC A with G flag and decrements TTL..

Am I saying soething wrong?

 

Labels:
0 Helpful
8 Replies 8

MHM Cisco World
VIP
VIP

‎11-04-2024 04:26 AM

no need 3 peer-router if CE connect to each NSK via different SVI IP.

MHM

0 Helpful

irenof
Spotlight
Spotlight

‎11-04-2024 04:51 AM

Hi, thank you for your reply. This clarify my doubt.

After posted the question, I came accross an other doubt:

irenof_0-1730724407271.png

I have EBGP mhop between VRF A and VRF B through a FW. Each device has SVI A and B with a /29. VRF A on device A (10.10.10.2) want to establish a BGP session to VRF B on device B (11.11.11.3). Could happen that the FW chooses the left leg to send packet to SVI B? In this case, A should route the packet to B.

0 Helpful

MHM Cisco World
VIP
VIP
In response to irenof

‎11-04-2024 04:56 AM - edited ‎11-04-2024 04:58 AM

no need multihop ebgp,
FW have single hop ebgp to each NSK via one SVI 
and between NSK you can run ibgp 

no need to make FW have multihop ebgp with both NSK

MHM

0 Helpful

irenof
Spotlight
Spotlight
In response to MHM Cisco World

‎11-04-2024 05:00 AM

Maybe I was not clear, sorry. I must (requirements) establish a ebgp session from VRF A on device A to VRF B on device B. This session must pass through the FW (I have static routes for this). Both devices has SVI A and B /29, with own IP address. My question is if the FW could route the packet to SVI B device B address via device A. Thanks

0 Helpful

MHM Cisco World
VIP
VIP
In response to irenof

‎11-04-2024 05:05 AM

no need also, add new SVI for config ibgp between two NSK instead of depend on L2/L3 path which pass through FW

you can use vpc vlan or non-vpc vlan for ibgp between two NSK

MHM

0 Helpful

irenof
Spotlight
Spotlight

‎11-04-2024 05:08 AM

The decision to pass thourgh via FW is mandatory. I cannot change it. I am migrating to Nk9s devices with VPC peer-link and I am dealing with this situations, so I have some doubts about L3 routing with VPC

Thanks

MHM Cisco World
VIP
VIP
In response to irenof

‎11-04-2024 05:23 AM

Let me check it

MHM

0 Helpful

irenof
Spotlight
Spotlight
In response to MHM Cisco World

‎11-06-2024 01:00 PM

Hi @MHM Cisco World, I made a lab in eve-ng and for the firewall I have to add the layer3 perr-router command. Also the devices prints the warning when I try to establish a BGP session. The warning says to add the command to solve a issue (I cannot exactly copy it now)

0 Helpful
Customers Also Viewed These Support Documents