Multihomed BGP with HSRP for Redundancy - looking for some help
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-10-2020 02:08 PM
Hello everyone, I am trying to build out a lab in gns3 and once i figure it I will be able to put it into production but essentially what I am trying to accomplish is what is illustrated on this link :
https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13768-hsrp-bgp.html#diag
I have 2 circuits, WOW and ATT.
WOW is a 300/300 , ATT is 50/50
I have a /24 block from ARIN and I subnetted them down to 1x25 and 2x26
My current environment is just 1 cisco 2951 that connect to both ISP’s.
My new environment I want setup like the diagram in the link below where its redundant with 2 Cisco ISR 4351’s
My issue is i am not able to ping past the direct connected routes. I have it setup in my live environment where I only get the default route from my carriers.
From R1 I believe I should be able to route out R2 to reach 172.16.0.10 with the setup and vice versa but I am not, as well as im not sure the advertisement are working as they should either.
Does anyone see anything blatantly wrong with the configs below?
Any help is appreciated thank you
So Focusing on WOW to R1
WOW#show ip bgp sum
BGP router identifier 172.16.0.1, local AS number 200
BGP table version is 2, main routing table version 2
1 network entries using 144 bytes of memory
1 path entries using 80 bytes of memory
1/1 BGP path/bestpath attribute entries using 152 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP using 376 total bytes of memory
BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.10.10.2 4 100 26 27 2 0 0 00:20:30 0
WOW#show ip bgp sum
BGP router identifier 172.16.0.1, local AS number 200
BGP table version is 2, main routing table version 2
1 network entries using 144 bytes of memory
1 path entries using 80 bytes of memory
1/1 BGP path/bestpath attribute entries using 152 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP using 376 total bytes of memory
BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.10.10.2 4 100 26 27 2 0 0 00:20:30 0
R1: R1#show ip bgp sum
BGP router identifier 192.168.0.194, local AS number 100
BGP table version is 1, main routing table version 1
1 network entries using 144 bytes of memory
1 path entries using 80 bytes of memory
1/0 BGP path/bestpath attribute entries using 152 bytes of memory
1 BGP AS-PATH entries using 24 bytes of memory
0 BGP route-map cache entries using 0 bytes of memory
0 BGP filter-list cache entries using 0 bytes of memory
BGP using 400 total bytes of memory
1 received paths for inbound soft reconfiguration
BGP activity 1/0 prefixes, 1/0 paths, scan interval 60 secs
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.10.10.1 4 200 28 27 1 0 0 00:21:46 0
192.168.0.18 4 100 39 38 1 0 0 00:33:07
R1 Contfig:
uilding configuration...
Current configuration : 3043 bytes
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R1
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
bsd-client server url https://cloudsso.cisco.com/as/token.oauth2
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
no ip icmp rate-limit unreachable
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
cts logging verbose
!
!
!
redundancy
!
!
track 1 interface Ethernet0/1 ip routing
!
ip tcp synwait-time 5
!
!
interface Ethernet0/0
no ip address
!
interface Ethernet0/0.10
encapsulation dot1Q 10
ip address 192.168.0.17 255.255.255.128
ip access-group DENY_SSH_ACCESS in
standby 1 ip 192.168.0.1
standby 1 priority 105
standby 1 preempt delay minimum 60
standby 1 track 1 decrement 20
!
interface Ethernet0/0.20
encapsulation dot1Q 20
ip address 192.168.0.130 255.255.255.192
ip access-group DENY_SSH_ACCESS in
standby 1 ip 192.168.0.129
standby 1 priority 105
standby 1 preempt delay minimum 60
standby 1 track 1 decrement 20
!
interface Ethernet0/0.30
encapsulation dot1Q 30
ip address 192.168.0.194 255.255.255.192
standby 1 ip 192.168.0.193
standby 1 preempt
!
interface Ethernet0/1
description Wide Open West
ip address 10.10.10.2 255.255.255.0
!
interface Ethernet0/2
no ip address
shutdown
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router bgp 100
bgp log-neighbor-changes
network 192.168.0.0
neighbor 10.10.10.1 remote-as 200
neighbor 10.10.10.1 description WOW-BGP
neighbor 10.10.10.1 soft-reconfiguration inbound
neighbor 10.10.10.1 prefix-list default in
neighbor 10.10.10.1 filter-list 1 out
neighbor 192.168.0.18 remote-as 100
neighbor 192.168.0.18 next-hop-self
!
ip forward-protocol nd
!
ip as-path access-list 1 permit ^$
!
no ip http server
no ip http secure-server
!
!
ip prefix-list default seq 5 permit 0.0.0.0/0
ip prefix-list default seq 10 deny 0.0.0.0/0 le 32
!
!
!
control-plane
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
transport input none
!
!
end
**************************8
R2: Current configuration : 3059 bytes
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname R2
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
bsd-client server url https://cloudsso.cisco.com/as/token.oauth2
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
!
!
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!
!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
cts logging verbose
!
!
!
redundancy
!
!
track 1 interface Ethernet0/1 line-protocol
!
ip tcp synwait-time 5
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Ethernet0/0
no ip address
!
interface Ethernet0/0.10
encapsulation dot1Q 10
ip address 192.168.0.18 255.255.255.128
ip access-group DENY_SSH_ACCESS in
standby 1 ip 192.168.0.1
standby 1 priority 105
standby 1 preempt delay minimum 60
standby 1 track 1 decrement 20
!
interface Ethernet0/0.20
encapsulation dot1Q 20
ip address 192.168.0.131 255.255.255.192
ip access-group DENY_SSH_ACCESS in
standby 1 ip 192.168.0.129
standby 1 priority 105
standby 1 preempt delay minimum 60
standby 1 track 1 decrement 20
!
interface Ethernet0/0.30
encapsulation dot1Q 30
ip address 192.168.0.195 255.255.255.192
standby 1 ip 192.168.0.193
standby 1 priority 105
standby 1 preempt
!
interface Ethernet0/1
description ATT
ip address 10.10.20.2 255.255.255.0
!
interface Ethernet0/2
no ip address
shutdown
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router bgp 100
bgp log-neighbor-changes
network 192.168.0.0
neighbor 10.10.20.1 remote-as 300
neighbor 10.10.20.1 description ATT-BGP
neighbor 10.10.20.1 soft-reconfiguration inbound
neighbor 10.10.20.1 prefix-list default in
neighbor 10.10.20.1 filter-list 1 out
neighbor 192.168.0.17 remote-as 100
neighbor 192.168.0.17 next-hop-self
!
ip forward-protocol nd
!
ip as-path access-list 1 permit ^$
!
no ip http server
no ip http secure-server
!
!
ip prefix-list default seq 5 permit 0.0.0.0/0
ip prefix-list default seq 10 deny 0.0.0.0/0 le 32
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
trans
WOW ISP Configuration:
Building configuration...
Current configuration : 2058 bytes
!
! Last configuration change at 21:48:23 UTC Tue Nov 10 2020
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname WOW
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
bsd-client server url https://cloudsso.cisco.com/as/token.oauth2
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
!
!
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!
!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
cts logging verbose
!
!
!
redundancy
!
!
ip tcp synwait-time 5
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Ethernet0/0
ip address 172.16.0.1 255.255.255.0
!
interface Ethernet0/1
ip address 10.10.10.1 255.255.255.0
!
interface Ethernet0/2
no ip address
shutdown
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router bgp 200
bgp log-neighbor-changes
network 172.16.0.0 mask 255.255.255.0
neighbor 10.10.10.2 remote-as 100
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
transport input none
!
!
end
ATT Config:
Building configuration...
Current configuration : 1996 bytes
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ATT
!
boot-start-marker
boot-end-marker
!
!
!
no aaa new-model
!
!
!
bsd-client server url https://cloudsso.cisco.com/as/token.oauth2
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
!
!
!
!
!
no ip icmp rate-limit unreachable
!
!
!
!
!
!
!
!
!
!
!
!
no ip domain lookup
ip cef
no ipv6 cef
!
multilink bundle-name authenticated
!
!
!
!
!
!
!
cts logging verbose
!
!
!
redundancy
!
!
ip tcp synwait-time 5
!
!
!
!
!
!
!
!
!
!
!
!
!
interface Ethernet0/0
ip address 172.16.1.1 255.255.255.0
!
interface Ethernet0/1
ip address 10.10.20.1 255.255.255.0
!
interface Ethernet0/2
no ip address
shutdown
!
interface Ethernet0/3
no ip address
shutdown
!
interface Ethernet1/0
no ip address
shutdown
!
interface Ethernet1/1
no ip address
shutdown
!
interface Ethernet1/2
no ip address
shutdown
!
interface Ethernet1/3
no ip address
shutdown
!
interface Serial2/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial2/3
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/0
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/1
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/2
no ip address
shutdown
serial restart-delay 0
!
interface Serial3/3
no ip address
shutdown
serial restart-delay 0
!
router bgp 300
bgp log-neighbor-changes
network 172.16.1.0 mask 255.255.255.0
neighbor 10.10.20.2 remote-as 100
!
ip forward-protocol nd
!
!
no ip http server
no ip http secure-server
!
!
!
!
control-plane
!
!
!
!
!
!
!
!
line con 0
exec-timeout 0 0
privilege level 15
logging synchronous
line aux 0
exec-timeout 0 0
privilege level 15
logging synchronous
line vty 0 4
login
transport input none
!
!
end
- Labels:
-
Routing Protocols
-
WAN

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-11-2020 12:24 AM
Hello,
at first glance, I don't think this is going to work, because in your lab, there is no connection between AS200 and AS300. Add an eBGP link between both ASs, this is what the 'real' world with interconnected public ASs would look like anyway.
