cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Bookmark
|
Subscribe
|
745
Views
5
Helpful
1
Replies

Multihomed BGP with HSRP for Redundancy - looking for some help

Hello everyone, I am trying to build out a lab in gns3 and once i figure it I will be able to put it into production but essentially what I am trying to accomplish is what is illustrated on this link : 

https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13768-hsrp-bgp.html#diag 

 

I have 2 circuits, WOW and ATT. 

WOW is a 300/300 , ATT is 50/50 

I have a /24 block from ARIN and I subnetted them down to 1x25 and 2x26 

My current environment is just 1 cisco 2951 that connect to both ISP’s.

 

My new environment I want setup like the diagram in the link below where its redundant with 2 Cisco ISR 4351’s 

My issue is i am not able to ping past the direct connected routes. I have it setup in my live environment where I only get the default route from my carriers.  

 

BGP Example.png

 

 

From R1 I believe I should be able to route out R2 to reach 172.16.0.10 with the setup and vice versa but I am not, as well as im not sure the advertisement are working as they should either. 

Does anyone see anything blatantly wrong with the configs below? 

Any help is appreciated thank you

 

 

 

 

 

So Focusing on WOW to R1 

 

WOW#show ip bgp sum 

BGP router identifier 172.16.0.1, local AS number 200 

BGP table version is 2, main routing table version 2 

1 network entries using 144 bytes of memory 

1 path entries using 80 bytes of memory 

1/1 BGP path/bestpath attribute entries using 152 bytes of memory 

0 BGP route-map cache entries using 0 bytes of memory 

0 BGP filter-list cache entries using 0 bytes of memory 

BGP using 376 total bytes of memory 

BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs 

  

Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd 

10.10.10.2      4          100      26      27        2    0    0 00:20:30        0 

 

WOW#show ip bgp sum 

BGP router identifier 172.16.0.1, local AS number 200 

BGP table version is 2, main routing table version 2 

1 network entries using 144 bytes of memory 

1 path entries using 80 bytes of memory 

1/1 BGP path/bestpath attribute entries using 152 bytes of memory 

0 BGP route-map cache entries using 0 bytes of memory 

0 BGP filter-list cache entries using 0 bytes of memory 

BGP using 376 total bytes of memory 

BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs 

  

Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd 

10.10.10.2      4          100      26      27        2    0    0 00:20:30        0 

 

R1: R1#show ip bgp sum 

BGP router identifier 192.168.0.194, local AS number 100 

BGP table version is 1, main routing table version 1 

1 network entries using 144 bytes of memory 

1 path entries using 80 bytes of memory 

1/0 BGP path/bestpath attribute entries using 152 bytes of memory 

1 BGP AS-PATH entries using 24 bytes of memory 

0 BGP route-map cache entries using 0 bytes of memory 

0 BGP filter-list cache entries using 0 bytes of memory 

BGP using 400 total bytes of memory 

1 received paths for inbound soft reconfiguration 

BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs 

  

Neighbor        V           AS MsgRcvd MsgSent   TblVer  InQ OutQ Up/Down  State/PfxRcd 

10.10.10.1      4          200      28      27        1    0    0 00:21:46        0 

192.168.0.18    4          100      39      38        1    0    0 00:33:07      

 

 

 

 

 

 

R1 Contfig: 

uilding configuration... 

  

Current configuration : 3043 bytes 

! 

version 15.5 

service timestamps debug datetime msec 

service timestamps log datetime msec 

no service password-encryption 

! 

hostname R1 

! 

boot-start-marker 

boot-end-marker 

! 

! 

! 

no aaa new-model 

! 

! 

! 

bsd-client server url https://cloudsso.cisco.com/as/token.oauth2 

mmi polling-interval 60 

no mmi auto-configure 

no mmi pvc 

mmi snmp-timeout 180 

! 

! 

! 

no ip icmp rate-limit unreachable 

! 

! 

! 

no ip domain lookup 

ip cef 

no ipv6 cef 

! 

multilink bundle-name authenticated 

! 

! 

! 

cts logging verbose 

! 

! 

! 

redundancy 

! 

! 

track 1 interface Ethernet0/1 ip routing 

! 

ip tcp synwait-time 5 

 

! 

interface Ethernet0/0 

no ip address 

! 

interface Ethernet0/0.10 

encapsulation dot1Q 10 

ip address 192.168.0.17 255.255.255.128 

ip access-group DENY_SSH_ACCESS in 

standby 1 ip 192.168.0.1 

standby 1 priority 105 

standby 1 preempt delay minimum 60 

standby 1 track 1 decrement 20 

! 

interface Ethernet0/0.20 

encapsulation dot1Q 20 

ip address 192.168.0.130 255.255.255.192 

ip access-group DENY_SSH_ACCESS in 

standby 1 ip 192.168.0.129 

standby 1 priority 105 

standby 1 preempt delay minimum 60 

standby 1 track 1 decrement 20 

! 

interface Ethernet0/0.30 

encapsulation dot1Q 30 

ip address 192.168.0.194 255.255.255.192 

standby 1 ip 192.168.0.193 

standby 1 preempt 

! 

interface Ethernet0/1 

description Wide Open West 

ip address 10.10.10.2 255.255.255.0 

! 

interface Ethernet0/2 

no ip address 

shutdown 

! 

interface Ethernet0/3 

no ip address 

shutdown 

! 

interface Ethernet1/0 

no ip address 

shutdown 

! 

interface Ethernet1/1 

no ip address 

shutdown 

! 

interface Ethernet1/2 

no ip address 

shutdown 

! 

interface Ethernet1/3 

no ip address 

shutdown 

! 

interface Serial2/0 

no ip address 

shutdown 

serial restart-delay 0 

!          

interface Serial2/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/1 

no ip address 

shutdown  

serial restart-delay 0 

! 

interface Serial3/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

router bgp 100 

bgp log-neighbor-changes 

network 192.168.0.0 

neighbor 10.10.10.1 remote-as 200 

neighbor 10.10.10.1 description WOW-BGP 

neighbor 10.10.10.1 soft-reconfiguration inbound 

neighbor 10.10.10.1 prefix-list default in 

neighbor 10.10.10.1 filter-list 1 out 

neighbor 192.168.0.18 remote-as 100 

neighbor 192.168.0.18 next-hop-self 

!          

ip forward-protocol nd 

! 

ip as-path access-list 1 permit ^$ 

! 

no ip http server 

no ip http secure-server 

! 

! 

ip prefix-list default seq 5 permit 0.0.0.0/0 

ip prefix-list default seq 10 deny 0.0.0.0/0 le 32 

! 

! 

! 

control-plane 

! 

line con 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line aux 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line vty 0 4 

login 

transport input none 

! 

! 

end 

 

**************************8 

R2: Current configuration : 3059 bytes 

! 

version 15.5 

service timestamps debug datetime msec 

service timestamps log datetime msec 

no service password-encryption 

! 

hostname R2 

! 

boot-start-marker 

boot-end-marker 

! 

! 

! 

no aaa new-model 

! 

! 

! 

bsd-client server url https://cloudsso.cisco.com/as/token.oauth2 

mmi polling-interval 60 

no mmi auto-configure 

no mmi pvc 

mmi snmp-timeout 180 

! 

! 

! 

! 

! 

no ip icmp rate-limit unreachable 

! 

! 

! 

! 

! 

! 

! 

! 

  

  

! 

! 

! 

! 

no ip domain lookup 

ip cef 

no ipv6 cef 

! 

multilink bundle-name authenticated 

! 

! 

! 

! 

! 

! 

! 

cts logging verbose 

! 

! 

! 

redundancy 

! 

! 

track 1 interface Ethernet0/1 line-protocol 

! 

ip tcp synwait-time 5 

 

! 

! 

!          

! 

! 

! 

! 

! 

! 

! 

! 

! 

interface Ethernet0/0 

no ip address 

! 

interface Ethernet0/0.10 

encapsulation dot1Q 10 

ip address 192.168.0.18 255.255.255.128 

ip access-group DENY_SSH_ACCESS in 

standby 1 ip 192.168.0.1 

standby 1 priority 105 

standby 1 preempt delay minimum 60 

standby 1 track 1 decrement 20 

! 

interface Ethernet0/0.20 

encapsulation dot1Q 20 

ip address 192.168.0.131 255.255.255.192 

ip access-group DENY_SSH_ACCESS in 

standby 1 ip 192.168.0.129 

standby 1 priority 105 

standby 1 preempt delay minimum 60 

standby 1 track 1 decrement 20 

! 

interface Ethernet0/0.30 

encapsulation dot1Q 30 

ip address 192.168.0.195 255.255.255.192 

standby 1 ip 192.168.0.193 

standby 1 priority 105 

standby 1 preempt 

! 

interface Ethernet0/1 

description ATT 

ip address 10.10.20.2 255.255.255.0 

! 

interface Ethernet0/2 

no ip address 

shutdown 

! 

interface Ethernet0/3 

no ip address 

shutdown 

! 

interface Ethernet1/0 

no ip address 

shutdown 

! 

interface Ethernet1/1 

no ip address 

shutdown 

! 

interface Ethernet1/2 

no ip address 

shutdown 

! 

interface Ethernet1/3 

no ip address 

shutdown 

! 

interface Serial2/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

router bgp 100 

bgp log-neighbor-changes 

network 192.168.0.0 

neighbor 10.10.20.1 remote-as 300 

neighbor 10.10.20.1 description ATT-BGP 

neighbor 10.10.20.1 soft-reconfiguration inbound 

neighbor 10.10.20.1 prefix-list default in 

neighbor 10.10.20.1 filter-list 1 out 

neighbor 192.168.0.17 remote-as 100 

neighbor 192.168.0.17 next-hop-self 

! 

ip forward-protocol nd 

! 

ip as-path access-list 1 permit ^$ 

! 

no ip http server 

no ip http secure-server 

! 

! 

ip prefix-list default seq 5 permit 0.0.0.0/0 

ip prefix-list default seq 10 deny 0.0.0.0/0 le 32 

! 

! 

! 

control-plane 

! 

! 

! 

! 

! 

! 

! 

!          

line con 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line aux 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line vty 0 4 

login 

trans 

 

 

 

WOW ISP Configuration: 

Building configuration... 

  

Current configuration : 2058 bytes 

! 

! Last configuration change at 21:48:23 UTC Tue Nov 10 2020 

! 

version 15.5 

service timestamps debug datetime msec 

service timestamps log datetime msec 

no service password-encryption 

! 

hostname WOW 

! 

boot-start-marker 

boot-end-marker 

! 

! 

! 

no aaa new-model 

! 

! 

! 

bsd-client server url https://cloudsso.cisco.com/as/token.oauth2 

mmi polling-interval 60 

no mmi auto-configure 

no mmi pvc 

mmi snmp-timeout 180 

! 

! 

! 

! 

! 

no ip icmp rate-limit unreachable 

! 

! 

! 

! 

! 

! 

! 

! 

  

  

! 

! 

! 

! 

no ip domain lookup 

ip cef 

no ipv6 cef 

! 

multilink bundle-name authenticated 

! 

! 

! 

! 

! 

! 

! 

cts logging verbose 

! 

! 

! 

redundancy 

! 

! 

ip tcp synwait-time 5 

 

! 

! 

!          

! 

! 

! 

! 

! 

! 

! 

! 

! 

interface Ethernet0/0 

ip address 172.16.0.1 255.255.255.0 

! 

interface Ethernet0/1 

ip address 10.10.10.1 255.255.255.0 

! 

interface Ethernet0/2 

no ip address 

shutdown 

! 

interface Ethernet0/3 

no ip address 

shutdown 

!          

interface Ethernet1/0 

no ip address 

shutdown 

! 

interface Ethernet1/1 

no ip address 

shutdown 

! 

interface Ethernet1/2 

no ip address 

shutdown 

! 

interface Ethernet1/3 

no ip address 

shutdown 

! 

interface Serial2/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/1 

no ip address 

shutdown 

serial restart-delay 0 

!          

interface Serial3/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

router bgp 200 

bgp log-neighbor-changes 

network 172.16.0.0 mask 255.255.255.0 

neighbor 10.10.10.2 remote-as 100 

! 

ip forward-protocol nd 

! 

! 

no ip http server 

no ip http secure-server 

! 

! 

!          

! 

control-plane 

! 

! 

! 

! 

! 

! 

! 

! 

line con 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line aux 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line vty 0 4 

login 

transport input none 

! 

!          

end 

 

 

 

ATT Config: 

Building configuration... 

  

Current configuration : 1996 bytes 

! 

version 15.5 

service timestamps debug datetime msec 

service timestamps log datetime msec 

no service password-encryption 

! 

hostname ATT 

! 

boot-start-marker 

boot-end-marker 

! 

! 

! 

no aaa new-model 

! 

! 

! 

bsd-client server url https://cloudsso.cisco.com/as/token.oauth2 

mmi polling-interval 60 

no mmi auto-configure 

no mmi pvc 

mmi snmp-timeout 180 

! 

! 

! 

! 

! 

no ip icmp rate-limit unreachable 

! 

! 

! 

! 

! 

! 

! 

! 

  

  

! 

! 

! 

! 

no ip domain lookup 

ip cef 

no ipv6 cef 

! 

multilink bundle-name authenticated 

! 

! 

! 

! 

! 

! 

! 

cts logging verbose 

! 

! 

! 

redundancy 

! 

! 

ip tcp synwait-time 5 

 

! 

! 

! 

! 

!          

! 

! 

! 

! 

! 

! 

! 

interface Ethernet0/0 

ip address 172.16.1.1 255.255.255.0 

! 

interface Ethernet0/1 

ip address 10.10.20.1 255.255.255.0 

! 

interface Ethernet0/2 

no ip address 

shutdown 

! 

interface Ethernet0/3 

no ip address 

shutdown 

! 

interface Ethernet1/0 

no ip address 

shutdown 

! 

interface Ethernet1/1 

no ip address 

shutdown 

! 

interface Ethernet1/2 

no ip address 

shutdown 

! 

interface Ethernet1/3 

no ip address 

shutdown 

! 

interface Serial2/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial2/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/0 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/1 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/2 

no ip address 

shutdown 

serial restart-delay 0 

! 

interface Serial3/3 

no ip address 

shutdown 

serial restart-delay 0 

! 

router bgp 300 

bgp log-neighbor-changes 

network 172.16.1.0 mask 255.255.255.0 

neighbor 10.10.20.2 remote-as 100 

! 

ip forward-protocol nd 

! 

! 

no ip http server 

no ip http secure-server 

! 

! 

! 

! 

control-plane 

! 

! 

! 

! 

! 

! 

! 

! 

line con 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line aux 0 

exec-timeout 0 0 

privilege level 15 

logging synchronous 

line vty 0 4 

login 

transport input none 

! 

! 

end 

 

1 Reply 1

Hello,

 

at first glance, I don't think this is going to work, because in your lab, there is no connection between AS200 and AS300. Add an eBGP link between both ASs, this is what the 'real' world with interconnected public ASs would look like anyway.