cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1145
Views
0
Helpful
3
Replies

OSPF migration to single area

vergeerf
Level 1
Level 1

Due to historical reasons we currently have an OSPF network with multiple areas.

Since we only have 4 (collapsed core layer-3) catalyst switches left, I want to migrate to a single area for simplicity.

- Is it possible to migrate without disruption? because I need to re-configure network statements for area 0 (currently all interfaces are in different areas)

Is this possible by running a second OSPF process e.g. ? and then remove the old network statements

- Also for simplicity, I want to deploy the <passive interface default> command, because only the vlan interface that is used between the 4 core switches should not be passive. The GUI doesn't accept it when I configure first the <no passive interface vlan x> where x= vlan between core switches.

- What are the pros and cons if I enable OSPF on the FWSM blades, (pro would be removing a lot of static routes on the core switches)

Thanks in advance for your feedback

3 Replies 3

Calin C.
Level 5
Level 5

- Is it possible to migrate without disruption? because I need to re-configure network statements for area 0 (currently all interfaces are in different areas)

Is this possible by running a second OSPF process e.g. ? and then remove the old network statements

Is hard to do it without complete disruption because when change areas, the OSPF will need to reconfigure. Maybe with a combination of temporary static routing during the OSPF modification you could avoid network interuptions, but OSPF will be affected. Keep in mind that you can have multiple OSPF processes, but only one routing table (if we are not talking about VRF lite, and here I don't think it's the case). It would be helpful if I know how are the 4 devices connected and where the backbone area 0 reside.

- Also for simplicity, I want to deploy the command, because only the vlan interface that is used between the 4 core switches should not be passive. The GUI doesn't accept it when I configure first the where x= vlan between core switches.

I don't know about GUI, but from CLI this should be like:

enable

configure terminal

router ospf x -> x represent the ospf process

passive-interface default

no passive-interface vlanXY -> xy represent the vlan number

What are the pros and cons if I enable OSPF on the FWSM blades, (pro would be removing a lot of static routes on the core switches

Pros: reduce overhead administration with static routing, dynamic redundancy possible

Cons: more memory utilization and traffic increase (due to ospf packets being exchanged / not a big problem usually), in a large network unwanted networks may arrive on the FWSM through OSPF dynamic routing (if not explicit denied)

May be more here, but right now I cannot think of any other.

Good luck and let me know if you need more help.

Cheers,

Calin

Hi Calin,

thanks for you input.

>don't know about GUI, but from CLI this should be like:

sorry, of course CLI, don't use the GUI for this kind of changes

enable

configure  terminal

router ospf x -> x represent the ospf process

passive-interface  default

no passive-interface vlanXY -> xy represent the vlan  number

The problem is the order, since ther 4 switches are connected via a layer-3 vlan interface I expect that as soon as I type (via inband management)

passive-interface  default I lose connectivity to the other 3 switches and not able to type no passive interface. If I change the order (first no passive-interface vlanXY and then passive-interface  default) I don't see the no passive command in a so I'm not comfortable that this command is applied.

To summarize your feedback, I have to claim a maintenance window and downtime cannot be avoided.

Better wait for the downtime to apply also the passive-interface commands. Of course you can do this also via ssh / telnet from another router over the p2p connection, but still the OSPF will be affected.

If you plan everything carefully you can reduce this downtime to a matter of seconds.

Good luck and if you have any problems in preparation, let me (us) know!

Cheers,

Calin

Review Cisco Networking for a $25 gift card