cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
261
Views
0
Helpful
2
Replies

OSPF issue on cisco L3

Hi there

I have 2 isp connecting separately to a core switch. i can ping both isp from the switch, however, LAN can not ping the backup link. The core switch is connected to an L3 switch which can't ping the backup link. Both switches are exchanging IPs via ospf and vlan1.

the L3 switch has the backup link in the routing table via VLAN 1 but it can't reach it. but it can for the primary link. if someone could identify what is the issue please?

1 Accepted Solution

Accepted Solutions

Hello
You have at a minimum of 3 ospf adjacency's from the core by the looks of it, All on multiaccess connections ( probably broadcast network type ) so these would have negotiated DR/BDR adjacency's.

In a multi-access ospf network DR/BDRs are elected so ospf updates/topology info etc is sent centrally from the elected DR of the ospf segment to all other attached ospf rtrs  thus negating the need for all the other rtrs sharing the same network segment  to do this individually - so manually setting the DR is recommended which then will make the election of the DR/BDR/Drother deterministic..

However If all of these opsf interfaces have just the single OSPF rtr attached them you could negate the DR/BDR election completely and set the each interface to become a P2P network. 

It also looks like your ospf rtrs that are adjacent from the core are receiving a default route or at least one is being advertised to them.
I would suggest you to remove this and then check reachability from the lan once more.

For future reference, If the static default routes you are showing on the core are required, maybe append them to be conditional based on the readability of the ISPs connections or some received prefix from either of them, this can be accomplished quite simply with a Boolean and ipsla tracking.

If however you have the option of receiving a default from either ISP instead then you could just cost out the less preferred default if need be so you would have no need to append any static default routes towards either ISP


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

View solution in original post

2 Replies 2

I dont try that but I think what you see is normal' the issue is Core have primary defualt route toward one ISP (using AD 10) so core SW send packet to primary even if destination IP is for backup and hence packet drop.

Shut the primary ISP interface and you can ping form LAN

MHM

MHM

Hello
You have at a minimum of 3 ospf adjacency's from the core by the looks of it, All on multiaccess connections ( probably broadcast network type ) so these would have negotiated DR/BDR adjacency's.

In a multi-access ospf network DR/BDRs are elected so ospf updates/topology info etc is sent centrally from the elected DR of the ospf segment to all other attached ospf rtrs  thus negating the need for all the other rtrs sharing the same network segment  to do this individually - so manually setting the DR is recommended which then will make the election of the DR/BDR/Drother deterministic..

However If all of these opsf interfaces have just the single OSPF rtr attached them you could negate the DR/BDR election completely and set the each interface to become a P2P network. 

It also looks like your ospf rtrs that are adjacent from the core are receiving a default route or at least one is being advertised to them.
I would suggest you to remove this and then check reachability from the lan once more.

For future reference, If the static default routes you are showing on the core are required, maybe append them to be conditional based on the readability of the ISPs connections or some received prefix from either of them, this can be accomplished quite simply with a Boolean and ipsla tracking.

If however you have the option of receiving a default from either ISP instead then you could just cost out the less preferred default if need be so you would have no need to append any static default routes towards either ISP


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
Review Cisco Networking for a $25 gift card