Re: route target import export not always working - Page 2

micfan · ‎09-18-2023

I have an ASR L3 MPLS implementation. Seems like that after a while we can no longer import export between VRF's.

this is working and importing exporting for the past VRF's , but as we expanded and added new VRFs to import into our shared VRF's , routes are not importing or exporting.

Cisco IOS XE Software, Version 16.06.02

vrf definition xxxx(shared)
rd 10.100.100.62:27
route-target export xx11:1127
route-target import xx11:1127
route-target import xx11:1123
route-target import xx11:1122
!
address-family ipv4
exit-address-family
!
vrf definition XXX1(client)
rd 10.100.100.62:22
route-target export xx11:1122
route-target import xx11:1122
route-target import xx11:1127

These two do not import or export to each other.

This client however imports and exports from shared.

vrf definition clientworking
rd 10.100.100.62:23
route-target export xx11:1123
route-target import xx11:1123
route-target import xx11:1127

I have tried to fix this with and without a single route targed for the clients needing to access the shared services.

Thanks for the help !!

micfan · ‎09-19-2023

its in production . I can not remove that import as I need to reach prefixes that are available remotely.

Harold Ritter · ‎09-19-2023

Hi @micfan ,

Can you share the output for "show ip route vrf <shared vrf> x.x.72.32/28".

Regards,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)

micfan · ‎09-19-2023

Here it is for both. route is seen in client where it is received via BGP. it never shows in shared
R1#sho ip route vrf (client) 91.240.72.32

Routing Table: xxx
Routing entry for x.x.72.32/28
Known via "bgp 65501", distance 20, metric 0
Tag 64513, type external
Last update from 100.116.0.19 00:29:10 ago
Routing Descriptor Blocks:
* 100.116.0.19, from 100.116.0.19, 00:29:10 ago
Route metric is 0, traffic share count is 1
AS Hops 1
Route tag 64513
MPLS label: none
R1#sho ip route vrf (shared) 91.240.72.32

Routing Table: xxx
% Network not in table

Harold Ritter · ‎09-19-2023

Hi @micfan ,

In the output you provided we see that the specific prefix is received from a remote PE via VPNv4 and it is imported in the client vrf, but not in the shared vrf. If it works sometimes and not other times, it certainly looks like it could be a bug. What platform do you use? What version do you run?

Regards,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)

micfan · ‎09-19-2023

Cisco IOS XE Software, Version 16.06.02

asr 1001x

micfan · ‎09-19-2023

any other ideas what can be checked to confirm its a bug? upgrading will unfortunately require a large approval and time delay

Harold Ritter · ‎09-19-2023

Hi @micfan ,

> Seems like that after a while we can no longer import export between VRF's.

Can we go back one step. Can you explain what this means and how the issue is triggered?

Regards,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)

micfan · ‎09-19-2023

I don't know exactly when this started or what triggered it. Just seemed to happen one day that we can only import/export between vrf using completely new rt . Its actually happening on multiple devices all of same ios and hardware. I wish I had a more detailed explanation of that.

I can not think of a change that would prevent import export locally. We do have some import maps used but not on device I am working on right now.

Mike

Harold Ritter · ‎09-19-2023

Hi @micfan ,

Can you check the logs to see if there is potentially error messages that could help?

Regards,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)

micfan · ‎09-20-2023

Nothing in the logs that seems related to me.

Example of creating new RT's that " fix " route imports"

Kinda odd but I cant figure out why new Rt's allows imports. Any more ideas much appreciated!!

R(config)#vrf def
R(config)#vrf definition (shared)
R(config-vrf)#route-target export xx11:2127
R(config-vrf)#route-target import xx11:2122
R(config-vrf)#exit
R(config)#vrf definition (client)
R(config-vrf)#route-target import xx11:2127
R(config-vrf)#route-target expo
R(config-vrf)#route-target export xx11:2122
R(config-vrf)#exit
R(config)#exit
R1#sho ip route vrf (client)

Routing Table: tours
Codes: L - local, C - connected, S - static, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
E1 - OSPF external type 1, E2 - OSPF external type 2
i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
ia - IS-IS inter area, * - candidate default, U - per-user static route
o - ODR, P - periodic downloaded static route, H - NHRP, l - LISP
a - application route
+ - replicated route, % - next hop override, p - overrides from PfR

Gateway of last resort is not set

10.0.0.0/30 is subnetted, 3 subnets
B 10.5.101.0 [20/0] via 10.7.101.1 (shared), 00:01:33
B 10.6.101.0 [20/0] via 10.7.101.1 (shared), 00:01:33
omitted

MHM Cisco World · ‎09-20-2023

This what I think what I was suggestion before.

Use RT both for shared not work.

Harold Ritter · ‎09-20-2023

Hi @micfan ,

This definitely looks like a bug to me. I would work with TAC to identify the bugid and version to upgrade to if I were you.

Regards,

Regards,
Harold Ritter, CCIE #4168 (EI, SP)